The Forrester Wave™: Static Application Security Testing Solutions, Q3 2025

Black Duck^® has been named a Strong Performer in The Forrester Wave™: Static Application Security Testing Solutions, Q3 2025.

In the report, Forrester evaluated 10 of the top SAST providers against 23 criteria covering their current offering and strategy. Forrester’s analysis is intended to help end users make informed purchasing decisions based on the specific needs of their organizations.

The report highlights remediation guidance and developer experience as key SAST requirements and weighs the impacts of AI on software development and application security testing.

Download the report now

Forrester’s take. Black Duck Software is a good fit for enterprises with a mix of embedded software that must adhere to high quality and safety standards as well as typical web-based applications.”

Forrester Research, Inc

The Forrester Wave™: Static Application Security Testing, Q3 2025

Among the 10 SAST providers evaluated, Black Duck received:

The highest score possible in five of the 23 criteria, including Detection, Code Quality, Policy Management, SDLC Integration, and Supporting Services and Offerings

The third-highest score in the Current Offering category

The only vendor to receive a score of 5 in the SDLC Integration criterion.