Sponsored By


Visit https://securityweekly.com/GitLab for more information!


It’s analyst season with the new Forrester Wave on SAST recently published as well as Gartner’s Application Security Testing Magic Quadrant publishing in April. We’ll talk about what are analyst reports, how should you use them, and how should you interpret placement on them as I like to call it, reading the analyst tea leaves.

This segment is sponsored by GitLab.

Visit https://securityweekly.com/GitLab to learn more about them! Visit https://www.securityweekly.com/asw for all the latest episodes!

Full Episode Show Notes

Reading Industry Analyst Tea Leaves To Predict The Future

GitLab’s List of Security Analyst Reports – https://about.gitlab.com/direction/secure/static-analysis/sast/#analyst-landscape

2021 Forrester Wave – https://www.forrester.com/report/The+Forrester+Wave+Static+Application+Security+Testing+Q1+2021/-/E-RES162015
- 2020 Gartner AST Magic Quadrant – https://about.gitlab.com/resources/report-gartner-mq-ast/
- GigaOm 2020 DevSecOps Tool Radar Report – https://gigaom.com/report/gigaom-radar-for-evaluating-devsecops-tools/
- G2 Peer Reviews Quadrant – https://www.g2.com/categories/static-application-security-testing-sast#grid


Taylor McCaslin


Taylor McCaslin -

Sr. Product Manager - Secure at GitLab


John Kinsella


John Kinsella -

Chief Architect at Accurics

Mike Shema


Mike Shema -

Product Security Lead at Square


  • Do you want to stay in the loop on all things Security Weekly? Visit https://securityweekly.com/subscribe to subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, and join our Discord Server!

  • Learn how to conquer cloud complexity in our first webcast of 2021, this Thurs, Jan 28th 11am ET! Next Thurs, Feb 4th 11am ET, in our first technical training of 2021, you’ll Learn How to Manage Insider Risks in the Work-from-Anywhere World! Register at https://securityweekly.com/webcasts. If you missed any of our 2020 webcasts or technical trainings, they are available at https://securityweekly.com/ondemand