WhiteHat has announced support for analyzing source code built using the PHP programming language within its Sentinel Source static code analysis solution.
The product now advances the ability for static analysis to model and simulate the execution of PHP. The firm plays down competing (and open source) products as "typically limited" by the fact that they cannot overcome the challenges presented by dynamic programming languages, such as dynamic typing.
This PHP offering ships with a tuned type inference system that complements its Runtime Simulation algorithm to provide what should be "deeper insight" into source code.
WhiteHat's Jerry Hoff says that Sentinel Source now supports three of the most popular web development languages: CSharp, Java, and PHP.
"WhiteHat Security customers can now benefit from its leading application security testing solutions throughout the SDLC, from testing code on the very first day of development with Sentinel Source to production-safe testing of live websites and applications via WhiteHat's award-winning Sentinel dynamic application security testing (DAST) product line," said Hoff.