CodeSecure Expands Its All-In-One SAST Platform with Expanded Language Support Critical to Securing Product Software 

Posted on


CodeSonar language coverage now includes Kotlin, Python, Go, Rust, JavaScript, and TypeScript 

CodeSecure today announced a major new release for CodeSonar, the leading SAST platform for securing product software.  CodeSonar 8.1 extends our developer centric approach for product security to include language support for Kotlin, Python, Go, Rust, JavaScript, and TypeScript.  In addition to C/C++, Java and C#, CodeSonar now includes the emerging security centric embedded languages as well as modern web centric languages to cover end-to-end application development all under one SAST application. 

Numerous high profile product exploits have driven significant changes in how product development teams approach securing their code.   These DevSecOps trends include: 

  • Making SAST a developer-centric solution to address security upfront 
  • While minimizing disruption to the workflow  
  • Managing geographically dispersed development teams 
  • Single SAST platform solution for consistent metrics, reporting, and vulnerability management 

“Securing product software is a critical concern for every organization in this digital age,” said Vince Arneja, Chief Product Officer of CodeSecure. “With CodeSonar 8.1, we’re not just addressing current security needs; we’re anticipating the challenges of tomorrow. Our platform empowers developers and security professionals alike to stay one step ahead of threats without sacrificing speed to market.”  

CodeSonar 8.1 addresses these challenges with an all-in-one SAST platform that builds upon the leading security-centric analysis.   

  • Languages: CodeSonar now supports a wide array of programming languages, including C/C++, Java, C#, Kotlin, Python, Go, Rust, JavaScript, and TypeScript. This evolution enables developers to leverage CodeSonar’s advanced analysis capabilities across a diverse range of projects and technologies.  
  • Operating Systems: Whether you’re developing for Windows, Linux, a real time operating system, or bare metal Better phrase than bare metal? CodeSonar ensures compatibility across various platforms. 
  • Compilers: CodeSonar supports more than 90 compilers, including clang, GCC, Microsoft, IAR, Tasking, QNX, WindRiver. 
  • CodeSonar adapts to the language of your choice, providing comprehensive analysis in C/C++, Java, C#, Kotlin, Python, Go, Rust, JavaScript, and TypeScript.  
  • Checkers: With hundreds of built-in checkers, CodeSonar examines code for potential vulnerabilities, coding errors, and compliance violations. From memory leaks to buffer overflows, CodeSonar’s advanced static analysis capabilities help identify issues early in the development cycle, saving time and resources in the long run.  
  • Host Platforms: Whether you prefer cloud-based solutions or on-premises deployment, or fully air-gapped environments, CodeSonar offers flexible host platform options to suit your needs. This adaptability ensures that teams of all sizes, geographies and industries can leverage the power of CodeSonar. 
  • Integrations: CodeSonar seamlessly integrates with popular development products and CI/CD pipelines, streamlining the code review and deployment process. From IDE plugins to Jenkins GitHub and GitLab integrations, CodeSonar fits seamlessly into your existing toolchain, enhancing developer productivity and collaboration.  
  • Coding Standards: CodeSonar helps organizations adhere to regulatory requirements such as MISRA, CERT, and CWE, ensuring code quality and security at every stage of the development lifecycle.  
  • Deployment Models: Support for on-premises deployment for enhanced control and security or a cloud-based solution for scalability and accessibility, CodeSonar offers deployment models that cater to your organization’s unique requirements. This includes support for fully air-gapped environments if no connectivity to the outside is allowed.  

CodeSonar 8.1 is available now from CodeSecure or through our global go-to-market partners. 

About CodeSecure 

CodeSecure is a leading global provider of application security testing (AST) solutions used by the world’s most security-conscious organizations to detect, measure, analyze and resolve vulnerabilities for software they develop or use. CodeSecure products enable rapid DevSecOps deployments while also securing their software supply chains. CodeSecure has corporate headquarters in Bethesda MD and publishes TalkSecure, an educational resource for product software developers. Visit us at and follow us on LinkedIn and X. 

Related Posts

Check out all of CodeSecure’s resources and stay informed.

view all posts

Book a Demo

We’re ready to help you integrate SAST and SCA security into your DevSecOps flow. Get a personally guided tour of our solution offerings to ensure you are receiving the right solution for your development team. 

book now