Audience
Developers and security champions interested in a powerful SAST tool
About YAG-Suite
The YAG-Suite is a French made innovative tool which brings SAST one step beyond. Based on static analysis and machine learning, YAGAAN offers customers more than a source code scanner : it offers a smart suite of tools to support application security audits as well as security and privacy by design DevSecOps processes. Beyond classic vulnerability detection, the YAG-Suite focuses the team attention on the problems that really matter in their business context, it supports developers in their understanding of the vulnerability causes and impacts. Its contextual remediation support them in fixing efficiently the problems while improving their secure coding skills. Additionally, YAG-Suite's unprecedented 'code mining' support security investigations of an unknown application with mapping all relevant code features and security mechanisms and offers querying capabilities to search for 0-days or non automatically detectable risks. PHP, Java and Python are supported. JS, C/C++ coming soon
Other Popular Alternatives & Related Software
Aikido Security
Secure your code, cloud, and runtime in one central system.
Aikido’s all-in-one security platform is loved by developers and security teams alike with full security visibility, insight in what matters most, and fast/automatic vulnerability fixes.
Teams get security done with Aikido thanks to:
- False-positive reduction
- AI Autotriage & AI Autofix
- Deep integration into the dev workflow (from IDEs and task managers to CI/CD gating)
- AI Pentests
- Automated Compliance
Aikido covers the entire Software Development Lifecycle (SDLC), including: static application security testing (SAST), dynamic application security testing (DAST), infrastructure-as-code (IaC), container scanning, secrets detection, open source license scanning (SCA), cloud posture management (CSPM), runtime protection, AI pentests, and more.
Learn more
Finite State
Finite State manages risk across the software supply chain with comprehensive SCA and SBOMs for the connected world. By providing end-to-end SBOM solutions, Finite State enables Product Security teams to meet regulatory, customer, and security demands. Finite State's best-in-class binary SCA creates visibility into any-party software that enables Product Security teams to understand their risk in context and shift right on vulnerability detection. With visibility, scalability, and speed, Finite State correlates data from all of your security tools into a single pane of glass for maximum visibility.
Learn more
Snyk
Snyk is the leader in developer security. We empower the world’s developers to build secure applications and equip security teams to meet the demands of the digital world. Our developer-first approach ensures organizations can secure all of the critical components of their applications from code to cloud, leading to increased developer productivity, revenue growth, customer satisfaction, cost savings and an overall improved security posture. Snyk’s Developer Security Platform automatically integrates with a developer’s workflow and is purpose-built for security teams to collaborate with their development teams. Snyk is used by 1,200 customers worldwide today, including industry leaders such as Asurion, Google, Intuit, MongoDB, New Relic, Revolut and Salesforce. Snyk is recognized on the Forbes Cloud 100 2021, the 2021 CNBC Disruptor 50 and was named a Visionary in the 2021 Gartner Magic Quadrant for AST.
Learn more
Kiuwan Code Security
Kiuwan is an end-to-end application security platform that integrates seamlessly into your development process.
Our toolset includes Static Application Security Testing (SAST), Software Composition Analysis (SCA), Software Governance and Code Quality, empowering your team to quickly identify and remediate vulnerabilities.
Integrating into your CI/CD pipeline, Kiuwan enables early detection and remediation of security issues. Kiuwan supports strict compliance with industry standards including OWASP, CWE, MISRA, NIST, PCI DSS, and CERT, among others.
✅ Large language support: 30+ programming languages.
✅ Detailed action plans: Prioritize remediation with tailored action plans.
✅ Code Security: Seamless Static Application Security Testing (SAST) integration.
✅ Insights: On-demand or continuous scanning Software Composition Analysis (SCA) to help reduce third-party threats.
✅ One-click Software Bill of Materials (SBOM) generation
Code Smarter. Secure Faster. Ship Sooner.
Learn more
Pricing
Starting Price:
From €500/token or €150/mo
Pricing Details:
Subscription: SaaS from €150/month/100kLoc
On premise from €215/month/100kLoc
Subscriptions are based on the number of lines of code to scan, no limit on the number of scans / users / projects.
Tokens are valid for per application
On premise from €215/month/100kLoc
Subscriptions are based on the number of lines of code to scan, no limit on the number of scans / users / projects.
Tokens are valid for per application
Free Version:
Free Version available.
Free Trial:
Free Trial available.
Company Information
YAGAAN
Founded: 2017
France
yagaan.com
Videos and Screen Captures
Other Useful Business Software
Gen AI apps are built with MongoDB Atlas
MongoDB Atlas provides built-in vector search and a flexible document model so developers can build, scale, and run gen AI apps without stitching together multiple databases. From LLM integration to semantic search, Atlas simplifies your AI architecture—and it’s free to get started.
Product Details
Platforms Supported
Cloud
Linux
Training
Documentation
Live Online
Support
Online
YAG-Suite Frequently Asked Questions
YAG-Suite Product Features
Static Application Security Testing (SAST)
Application Security
Dashboard
IDE
Multi-Language Scanning
Source Code Scanning
Vulnerability Scanning
Debugging
Deployment Management
Real-Time Analytics
Static Code Analysis
Analytics / Reporting
Code Standardization / Validation
Multiple Programming Language Support
Provides Recommendations
Standard Security/Industry Libraries
Vulnerability Management
