Interactive Application Security Testing (IAST) - CI/CD Glossary Definition
IAST watches an app from within while it runs to pinpoint vulnerabilities accurately.
IAST instruments a running application from the inside to observe data flow during tests, combining code visibility with runtime behavior to report vulnerabilities with low false positives.
IAST watches an app from within while it runs to pinpoint vulnerabilities accurately.
Where it fits
IAST agents run alongside existing functional or integration tests in CI, so security findings surface as a byproduct of tests already being executed.
Related guides
Static Application Security Testing (SAST) - CI/CD Glossary DefinitionStatic Application Security Testing (SAST): SAST analyzes application source code, bytecode, or binaries with…
Dynamic Application Security Testing (DAST) - CI/CD Glossary DefinitionDynamic Application Security Testing (DAST): DAST tests a running application from the outside, sending craft…
Security Test - CI/CD Glossary DefinitionSecurity Test: A security test evaluates software for vulnerabilities, misconfigurations, and weaknesses that…