Static application security testing (SAST) tools have a variety of usability issues that make them less accessible to developers, researchers say. Tools failed to provide obvious actions to manage the results of a scan or to fix vulnerabilities, they say. The research was presented at the USENIX Symposium on Usable Privacy and Security on August 11. The paper describes a heuristic walkthrough approach to analyzing the software as well as a survey of users. The researchers focused on four tools: three open source SAST tools and one commercial tool.”]