SAST Scanning Identify security vulnerabilities in source code through static analysis. When to Use This Skill Use this skill when: - Implementing secure SDLC practices - Adding security gates to CI/CD - Automating code security reviews - Finding vulnerabilities before deployment - Meeting compliance requirements Prerequisites - Source code access - CI/CD pipeline - SAST tool installation Tool Comparison | Tool | License | Languages | Best For | |------|---------|-----------|----------| | Semgrep | OSS/Commercial | 30+ | Custom rules, speed | | CodeQL | Free (GitHub) | 10+ | Deep analysis | |…