CAST Positioned as a Leader in SPARK Matrix™ 2022 for Software Composition Analysis by Quadrant Knowledge Solutions

  • The Quadrant Knowledge Solutions SPARK Matrix™ provides competitive analysis and ranking of leading software composition analysis vendors.

  • CASTwith its comprehensive technology and customer experience management, received top marks on the technology excellence and customer impact metrics.

MIDDLETON, Mass., September 13, 2022 /PRNewswire/ — Quadrant Knowledge Solutions announced today that it has named CAST a 2022 Technology Leader in the SPARK Matrix: Software Composition Analysis, 2022.

Quadrant Knowledge Solutions Logo

Quadrant Knowledge Solutions’ SPARK Matrix™ includes detailed analysis of global market dynamics, key trends, vendor landscape and competitive positioning. The study provides competitive analysis and ranking of leading technology vendors in the form of its SPARK MatrixMT. The study offers strategic insights for users to assess the capabilities of different vendors, competitive differentiation, and market position.

According Abishek Anant GargAnalyst, Quadrant Knowledge Solutions, “CAST Software Intelligence Product, NEWS includes software composition analysis (SCA), which allows organizations to use open source software and third-party code in the proprietary code of their applications. Its “Portfolio Advisor for Open Source” capability allows enterprises to prioritize vulnerabilities associated with third-party components based on the severity of threats in application code. , compelling customer references, a comprehensive roadmap and vision, and a highly scalable product suite, received high marks for technology excellence and customer impact and was positioned as a leader in the SPARK Matrix : software composition analysis, 2022,” adds Abhishek.

“Deploying CAST Highlight as an open-source ‘control tower’ in an organization can be done in weeks,” says Rado Nikolov, EVP Software Intelligence Platforms at CAST. Rado added: “It does not properly rely on each developer using an IDE extension. Instead, it connects directly to source code repositories and aggregates the results of analyzing all applications in intuitive dashboards: the “control tower”, allowing legal security, , and operations experts to make informed decisions and only engage developers when needed.”

Quadrant Knowledge Solutions defines software composition analysis (SCA) software that automates the process of analyzing internal applications throughout the application development process for associated security risks, vulnerabilities, and potential quality issues integrated open source software (OSS) and other commercial software. off-the-shelf (COTS) components in proprietary application code. SCA tools typically identify and prioritize risks, alert IT security and development teams, to eliminate risks and security issues before any type of damage is done. They can also analyze the component distribution license to determine the associated legal compliance risks. SCA tools may also have additional capabilities to analyze operational and maintenance risks and project viability.

SCA products scan embedded OSS and COTS components to detect vulnerabilities and risks related to security, code quality, license compliance, and long-term project viability. Features provided by SCA products include proprietary and third-party code analysis for embedded OSS and COTS software, vulnerability prioritization, integration into the DevSecOps ecosystem, operational risk management, and software BOM generator ( SBOM).

SCA products analyze the base code as well as the development environment to discover and analyze the open source codes embedded in the OSS and COTS used. They prioritize the vulnerabilities found in this third-party code according to the risk they pose to the software. SCA software can be integrated into the DevSecOps ecosystem from the initial development phase to the point of deployment and maintenance, ensuring security throughout the software development lifecycle (SDLC). It also analyzes third-party software for operational risks, including maintenance and long-term support, to ensure that the software can be maintained for the long term without major modifications being required. Together with the SBOM constructor, the SCA software provides the list of all OSS and COTS software used in internal software development and generates a database of these vulnerabilities for auditing purposes.

Additional Resources:

  • For more information on CAST, visit here

  • SPARK Matrix: Software Composition Analysis, 2022 Link

About CAST

CAST is the leader in the software intelligence category. CAST technology can see inside custom applications with MRI-like precision, automatically generating insights into their inner workings: composition, architecture, transaction flow, cloud readiness, structural flaws, legal risks, and of security. This becomes essential for faster cloud modernization, increasing software engineering speed and efficiency, better open source risk control, and accurate technical due diligence. CAST operates worldwide with offices in North America, Europe, India, China. Visit

About Quadrant Knowledge Solutions

Quadrant Knowledge Solutions is a global consulting and advisory firm focused on helping clients achieve their business transformation goals through business strategy and growth consulting services. At Quadrant Knowledge Solutions, our vision is to become an integral part of our client’s business as a strategic knowledge partner. Our research and advisory deliverables are designed to provide comprehensive insights and strategic insights to help clients formulate growth strategies to survive and thrive in ever-changing business environments.

For more research available, please visit

Media Contact:

Quadrant Knowledge Solutions
Riya Mehar
[email protected]




Show original content: 301622780.html

SOURCE Quadrant Knowledge Solutions


Comments are closed.