Case Study: Global Leader in Enterprise Software and Cloud Computing achieves continuous Apex scans and faster AppExchange approvals with Checkmarx

Global Leader in Enterprise Software and Cloud Computing

This global leader in enterprise software and cloud computing — an ISV with multiple Salesforce AppExchange applications — needed to ensure its Apex code was free of security and compliance issues before Salesforce’s security review. The team also required a static analysis solution that could handle a high-velocity CI process with hourly commits, overcoming the free Force.com scanner’s scan limits and variable wait times.

They selected Checkmarx CxSAST, the enterprise scanner that detects Apex-specific vulnerabilities (including SOQLi and SOSLi), and integrated it with Jenkins in under two hours. Scans run on every commit, findings are triaged and remediated before QA, and the result is faster time-to-market, security built into the SDLC, no daily scan limits, and Apex applications that meet compliance and security requirements.