When developing an application (whether web or mobile) it is necessary to test the security of the same to prevent any attacker from finding any vulnerability and exploiting it to gain access to the confidential information handled by the application or also to the infrastructure that supports it. However, performing only dynamic evaluations (with the application running) is not enough to ensure that the application is safe, tests and vulnerability scans must also be performed on the code of the application. This will allow you to have a more complete visibility of the applications that are being developed and the possible vulnerabilities in each of them.