Overview
Product Information on Veracode
Updated 13th October 2025
What is Veracode?
Veracode Pricing
Overall experience with Veracode
VP, RISK AND COMPLIANCE
<50M USD, SoftwareFAVORABLE
“Customizable Reporting Valued Despite Difficult Self-Help Navigation And Slow Scans”
Veracode is an accepted and respected vendor in our market. Their onboarding team was very helpful and support is responsive. There was a point in time where a bug resulted in extra work on our end while they chased it, which was seemingly mishandled and took longer than expected, which is the reason I cannot give five stars.
Director Global Cyber Security
500M - 1B USD, IT ServicesCRITICAL
“Veracode Does the Job”
Veracode has a great SCA tool, however the reporting needs improvement. Also there is a disconnect between the knowledge-base and actual features associated with the composition analysis reports. We had our account manager tell us features weren't available and they weren't though the knowledge base said differently.
About Company
Company Description
Veracode is a software security firm focused on identifying flaws and vulnerabilities across all stages of the software development lifecycle. The foundation of Veracode's approach lies in its Software Security Platform, which uses advanced AI algorithms trained on vast datasets of code. This allows for faster and more precise identification and rectification of security flaws. Veracode's mission is to evolve the concept of software security, ensuring it stays aligned with the dynamic needs of today's software development processes.
Company Details
Company type
Private
Year Founded
2006
Head office location
Burlington, United States
Number of employees
501 - 1000
Website
Do You Manage Peer Insights at Veracode?
Access Vendor Portal to update and manage your profile.
Key Insights
A Snapshot of What Matters - Based on Validated User Reviews
Reviewer Insights for: Veracode
Performance of Veracode Across Market Features
Veracode Likes & Dislikes
UI is intuitive and the reporting options are customizable to give our clients the assurance they are looking for while not oversharing sensitive information.
Easy to navigate Compatible with OWASP top ten Integration with Github
Code scan can be done on demand. Helps on compliance requirements.
Multiple senior level resources required for setup and periodic reviews. The scans can be painfully slow if your team does not take enough time to optimize the binaries for scanning. Self-help resources can be difficult to navigate.
The reports The support structure Automated Notifications
None
Top Veracode Alternatives
Peer Discussions
Veracode Reviews and Ratings
Filter Reviews
Sort By:
Most helpful
Last 12 Months
Star Rating
Reviewer Type
Reviewer's Company Size
Reviewer's Industry
Reviewer's Region
Reviewer's Job Function
- VP, RISK AND COMPLIANCE<50M USDSoftwareReview Source
Customizable Reporting Valued Despite Difficult Self-Help Navigation And Slow Scans
Veracode is an accepted and respected vendor in our market. Their onboarding team was very helpful and support is responsive. There was a point in time where a bug resulted in extra work on our end while they chased it, which was seemingly mishandled and took longer than expected, which is the reason I cannot give five stars. - ENGINEERING MANAGER10B+ USDMiscellaneousReview Source
Veracode Scan Tool Bolsters Security Against Attack Vulnerabilities
Veracode scan tool helps protect our application code base from security issues exposure and vulnerability attacks. Veracode scans runs on the deployment package and scan every line of code against a repository of known issues and attacks and generates a exhaustive report of the findings. The tooling is quite interactive where issues are listed and categorized and we can click on each to go the specific line of the code. Mitigation procedure and techniques are also listed. - IT DEPUTY MANAGER1B-10B USDServices (non-Government)Review Source
Veracode: Offering Real-Time Solutions to Code Vulnerabilities
Veracode is the first application security tool to cover the entire SDLC. It can scan an entire codebase for open-source libraries and identify vulnerabilities. the detailed reports provide impact assessments and remediation suggestions. One of the best features is its support for real-time fixes for identified issues as you code. Integration with Veracode is straightforward, making it easy to incorporate into your CI/CD workflow. Additional security experts are available to assist with any needs. - SOFTWARE ENGINEER<50M USDHealthcare and BiotechReview Source
Veracode does what it promises - a little UX attention and it would be even greater.!
Technically great at its job, but is a little unintuitive for a non-security focused engineer. Clearly, it is the responsibility of every developer to provide due diligence to ensure that their code is secure, not just those specifically involved in the security team. Therefore, it makes sense to me that the product would be tailored not only to those most familiar with security-related concerns, but to others who are mainly focused on web, mobile, service, etc. development. - PRINCIPAL SECURITY ENGINEER10B+ USDTelecommunicationReview Source
Veracode Detailed Review
Excellent integration and implementation options. The customer support is prompt and provides in-depth analysis of the vulnerabilities.
Showing Result 1-5 of 16