Datadog Code Security (IAST)

Detect real vulnerabilities in your production application’s code and fix them faster with observability context.

Loved & Trusted by Thousands

Product Features

Detect Vulnerabilities in Your Production Code

Continuously discover vulnerabilities in your first-party code during runtime without impacting application performance
Eliminate false positives with an IAST approach that achieved 100% in OWASP Benchmark and in over twenty additional detection rules
Get an accurate, up-to-date view of your attack surface by monitoring internal code operations and interactions with other components

dg/codesecurity1.png

Prioritize Critical Vulnerabilities with Observability Context

Focus on vulnerabilities that matter the most with the Datadog Severity Score, which factors in environment and real-time threat activity
Fix issues with the highest business impact by pivoting between vulnerable services, affected cloud workloads, and infrastructure hosts
Understand your vulnerability exposure by tracking real-time risk with continuous monitoring of real application traffic

Accelerate Remediation with Source Code Integration

Quickly find the source of any vulnerability with code snippets, affected file and method names, and line numbers
Pinpoint root causes faster and streamline investigations by identifying which version introduced a vulnerability and by which commit
Reduce risk exposure time by easily fixing vulnerabilities in your code with guided remediation steps and example code

dg/codesecurity3.png

Unify Workstreams for Code Vulnerability Management

Seamlessly integrate code vulnerability management within your existing workstreams using Datadog’s Jira and CI integrations
Reduce security risk faster by enabling DevOps and security teams to collaborate more effectively and take action based on a single source of truth
Improve application security posture by using the same components already installed by development teams for performance monitoring