Seedwire
AI & Machine Learning
·By Seedwire Editorial·

The SAST Reckoning: How AI Reasoning Broke AppSec Wide Open

In February 2026, Anthropic pointed Claude Opus 4.6 at production open source codebases and found over 500 vulnerabilities that had survived decades of expert review and continuous SAST scanning. Fourteen days later, OpenAI followed with Codex Security, revealing 792 critical and 10,561 high severity findings across 1.2 million commits. Both tools are free. Both use LLM reasoning instead of pattern matching. And both just proved that the foundational assumption of the $20 billion application security industry, that static analysis catches what matters, was never true.

This is not an incremental improvement in scanning technology. This is a category rupture. The question is no longer whether AI will reshape AppSec. The question is what happens to the companies, workflows, and security postures built on top of a technology that just got publicly exposed as structurally blind.

Three Decades of Pattern Matching Hit a Wall

Static Application Security Testing has been the backbone of secure development since the early 2000s. Tools like Fortify (now OpenText), Checkmarx, Veracode, and later Snyk built enormous businesses around a straightforward premise: scan source code against a database of known vulnerability patterns, flag matches, let developers fix them. The approach works well for textbook vulnerabilities. SQL injection with unsanitized string concatenation, XSS through unescaped output, hardcoded credentials in config files. Pattern matching catches these reliably.

But the approach has always had two fatal weaknesses that the industry quietly accepted as cost of doing business.

The first is false positives. Legacy SAST tools routinely produce false positive rates between 50% and 80%. Developers learn to ignore alerts. Security teams spend more time triaging noise than fixing real bugs. A 2024 empirical study examining 815 real vulnerable code commits in C and C++ projects found that a single SAST tool would only catch about half of them, with 22% of known vulnerable commits producing no warning at all.

The second weakness is more fundamental: SAST cannot reason about intent. It matches syntax against patterns. It cannot understand that a particular access control check is missing because the developer assumed authentication happened upstream. It cannot trace a complex data flow across twelve microservices to realize that a sanitization step in service three gets bypassed by an edge case in service seven. It cannot recognize that a business logic flaw lets users escalate privileges through a sequence of individually safe API calls.

These are precisely the vulnerability classes that matter most in modern applications, and they are precisely what Claude Code Security and Codex Security were designed to find.

How Reasoning Scanners Actually Work

The technical distinction between traditional SAST and what Anthropic and OpenAI have built is not a matter of degree. It is a difference in kind.

Traditional SAST operates through abstract syntax tree parsing and dataflow analysis. The tool builds a model of how data moves from sources (user input, API calls) to sinks (database queries, file operations, HTTP responses). It checks whether known sanitization functions appear along those paths. If the path from source to sink lacks the expected sanitizer, it flags a vulnerability. This is computationally efficient and scales well. It is also fundamentally limited to patterns the tool's authors anticipated and encoded as rules.

Claude Code Security takes a different approach entirely. It reads code the way a human security researcher would, building a mental model of component interactions, understanding the application's architecture, and reasoning about what could go wrong. Anthropic's implementation includes a multi-stage verification pipeline where Claude re-examines each finding, attempting to prove or disprove its own conclusions before assigning severity ratings and confidence scores. This self-adversarial step is what keeps the false positive rate manageable despite the broader scope of analysis.

OpenAI's Codex Security, built on GPT-5 and evolved from an internal tool called Aardvark, works as an agentic security researcher. Rather than scanning files in isolation, it monitors commits and changes, building contextual understanding of the codebase over time. During beta testing, OpenAI reported that false positive rates dropped by more than 50% across all repositories as the system learned, with one case showing an 84% noise reduction from initial rollout.

The practical impact is significant. These tools can identify vulnerability classes that SAST was structurally incapable of detecting: broken access control patterns that span multiple services, race conditions in authentication flows, business logic flaws in payment processing, and authorization bypass chains that require understanding how multiple API endpoints interact. An AI security startup called AISLE demonstrated this capability by independently discovering all 12 zero-day vulnerabilities in OpenSSL's January 2026 security patch, including CVE-2025-15467, a high severity stack buffer overflow in CMS message parsing that is potentially remotely exploitable without valid key material.

Wall Street Got the Message Before the Industry Did

The market reaction was swift and brutal. When Anthropic announced Claude Cowork's security capabilities in late January 2026, the broader SaaS sell-off that analysts dubbed the "SaaSpocalypse" hit cybersecurity stocks particularly hard. CrowdStrike, Datadog, and Zscaler each fell roughly 11%. Palo Alto Networks dropped 9% in a single week and was down 19% year to date. The Global X Cybersecurity ETF fell 4.5% to its lowest level since November 2023, bringing its 2026 decline to over 21%. The iShares Expanded Tech-Software Sector ETF entered a formal bear market, down nearly 25% by mid-quarter.

The market's logic was blunt but not wrong. If the two most valuable AI companies in the world are giving away security scanning for free, what happens to the companies charging six and seven figures annually for inferior pattern-matching tools? Checkmarx raised at a $1 billion valuation. Veracode was valued at $2.5 billion. Snyk, targeting IPO readiness in 2026 with $343 million in annual recurring revenue, suddenly faces a world where its core SAST offering competes against free tools that find more bugs with fewer false positives.

Forrester went so far as to call it a "SaaS-pocalypse in cybersecurity," and for once the analyst hyperbole was not far off. The companies most directly in the blast radius are pure-play SAST vendors and those whose value proposition rests primarily on code scanning. Vendors with broader platforms spanning runtime protection, software composition analysis, and compliance automation have more defensible positions. But the foundation just shifted under all of them.

What Everyone Is Getting Wrong

The dominant narrative frames this as "AI replaces SAST." That narrative is both too optimistic and too narrow.

It is too optimistic because reasoning-based scanning has its own limitations. LLMs hallucinate. They can confidently assert that a vulnerability exists in code that is perfectly safe. The multi-stage verification that Anthropic and OpenAI use mitigates this, but it does not eliminate it. Both tools are in research preview, not general availability, for a reason. Enterprise security teams need deterministic, auditable results for compliance frameworks like SOC 2 and ISO 27001. "Claude thinks this might be a vulnerability with 87% confidence" does not satisfy an auditor the way a CVE-mapped SAST finding does.

The narrative is too narrow because the real disruption is not about replacing one scanning tool with another. It is about collapsing the entire vulnerability management workflow. Today, a typical AppSec program runs SAST in CI/CD, triages findings in a vulnerability management platform, assigns tickets to developers, and tracks remediation over weeks or months. Claude Code Security and Codex Security do not just find bugs. They suggest targeted patches. The logical next step, and both companies are clearly building toward it, is autonomous remediation: the AI finds the bug, writes the fix, opens the pull request, and the human just reviews.

That is not a threat to SAST vendors alone. That is a threat to the entire ecosystem of vulnerability management platforms, security orchestration tools, and AppSec consulting firms that exist because the gap between finding a bug and fixing it is wide enough to build a business in.

The Strategic Play Behind "Free"

Neither Anthropic nor OpenAI is giving away security scanning out of altruism. The strategy is transparent and effective.

For Anthropic, Claude Code Security drives Enterprise and Team tier adoption. Security scanning requires uploading your codebase to Claude, which means enterprise contracts, data processing agreements, and deep integration into development workflows. Once your security scanning runs through Claude, switching costs compound rapidly. The security tool is the hook. The platform is the product.

For OpenAI, Codex Security serves the same lock-in function for their ChatGPT Enterprise and Codex platform. Making it available to Pro, Team, Enterprise, and Edu customers with free usage during the preview period is classic land-and-expand. Get security teams dependent on the tool during the free period, then monetize through platform fees and increased API usage as organizations integrate it deeper into their workflows.

Both companies also benefit enormously from the data. Every codebase scanned teaches their models more about real-world vulnerability patterns, code architecture, and the relationship between code changes and security outcomes. This creates a flywheel that pure-play SAST vendors cannot replicate: more users means more data means better models means more users.

The open source community gets a particularly interesting deal. Anthropic is offering expedited access to open source maintainers, which means the world's most critical and underfunded codebases get scanned by the most capable tools available. If Claude Code Security had existed two years ago, Log4Shell might have been caught before it became the most exploited vulnerability of the decade.

What Builders Should Do Now

If you are a security leader at an enterprise, the immediate action is straightforward: get access to both research previews and run them against your most critical codebases alongside your existing SAST tools. Compare the findings. The delta between what your current tools catch and what the AI scanners catch is your actual risk exposure. That gap has always existed. Now you can measure it.

If you are building a security startup, avoid the SAST layer entirely. It is being commoditized to zero. The value is moving to three areas: first, the remediation and verification layer (confirming fixes actually work and do not introduce regressions), second, the compliance and audit layer (translating AI findings into formats that satisfy regulatory frameworks), and third, the runtime protection layer (catching exploitation attempts that no amount of code scanning prevents).

If you are a developer, start using these tools now. The reasoning-based approach produces findings that are genuinely educational. Unlike SAST alerts that say "potential SQL injection on line 47," Claude Code Security explains why the vulnerability exists, how it could be exploited, and what the fix should look like. It is the best security training tool ever built, and it is free.

If you work at Checkmarx, Veracode, or Snyk, the playbook is clear even if it is painful: pivot from scanning to platform. Scanning is now a feature, not a product. The companies that survive will be the ones that build irreplaceable value around the scanning layer, whether in developer workflow integration, compliance automation, or holistic application security posture management. Snyk's response post acknowledging Claude Code Security as a "welcome evolution in the remediation loop" suggests they understand this. Whether they can execute the pivot before the revenue impact hits is another question.

The SAST market is not dying overnight. Pattern-based tools still have roles in CI/CD gates, compliance checkboxes, and catching the low-hanging fruit that does not require reasoning. But the premium that enterprises paid for SAST, the idea that these tools represented cutting-edge security analysis, is gone. Anthropic and OpenAI did not just find bugs that SAST missed. They proved, publicly and undeniably, that the entire approach has a structural ceiling. Every CISO in the world now knows that ceiling exists, and no amount of marketing can unknow it.

Claude Code Security
Codex Security
SAST limitations
AI application security
static analysis
AppSec market disruption
reasoning-based vulnerability scanning
SaaSpocalypse
Seedwire Newsletter

Stay ahead of the curve

Get the most important tech stories delivered to your inbox. No spam, unsubscribe anytime.