Our team continues to develop SmartDec Scanner static analyzer. Our goal is to create a powerful analyzer with an intuitive interface. We would like to present you the latest version of our tool. See the SmartDec Scanner 3.2.0 release notes below.

Overview

We added three new languages. Now SmartDec Scanner scans code in 29 languages, which makes it a world leader in the number of supported programming languages. We made the integration with Jira flexible: you can define any parameters when creating a task in the SmartDec Scanner interface. Also, for each vulnerability found, you can now see a list of corresponding classifications: CWE, CWE/SANS Top 25, OWASP, PCI DSS, HIPAA.

Let’s take a look at the changes in detail.

Languages support

SmartDec Scanner supports new languages analysis:

1С

VBA

ASP.NET

Rule base

Improved vulnerability search algorithms

Added new vulnerability search rules for supported programming languages

Supplemented vulnerability descriptions

CWE

We added references to CWE. You can view CWE and other vulnerability classifications on Detailed Results page.