What Is a DAST Scan?
A DAST scan, or dynamic application security testing, probes a deployed, running application by sending requests as an attacker would and observing responses. It finds issues that only manifest at runtime, such as injection or misconfiguration, without access to source code. It complements static analysis by testing the live system.
Why it matters
Some vulnerabilities exist only in how a running app behaves, invisible to source-level scanners. A DAST scan in the pipeline catches them against a deployed test instance before release. The trade-off is that it needs a running target and can be slower than static checks.
Related guides
What Is Container Scanning?Container scanning inspects a built container image for known vulnerabilities in its operating system package…
What Is License Compliance Scanning?License compliance scanning detects the open-source licenses of a project's dependencies and flags any that v…
What Is a Code Quality Report?A code quality report is a pipeline artifact summarizing maintainability issues, like complexity and duplicat…