Container scanners Scan your image binaries to identify and fix security vulnerabilities. JFrog Xray Snyk Container Trivy DAST scanners Scan your web application in a given environment to identify potential vulnerabilities. StackHawk ZAP SAST scanners Scan your Git repository with a static application security testing (SAST) scanner, which detects security flaws and provides suggested code fixes. Checkmarx Find Security Bugs GitHub Security Scanner Mend Snyk SonarQube SCA scanners Scan your Git repository with a software composition analysis (SCA) scanner, to detect security vulnerabilities in dependencies. Mend Snyk