The regular headlines of security breaches, along with increasing pressure from governments to hold companies accountable for the breaches, are making more developers (and their managers) pay more attention to security in their IT solutions.
Automated code analysis for application code is nothing new, but database code analysis has been behind the curve for many years.
Microsoft introduced the SQL Vulnerability Assessment (VA) feature in SSMS 17.4 in December 2017. The idea behind the feature is to easily scan your database(s) for standardized security best practices. The rules of the scan are supplied by Microsoft and (at the time of writing) don't allow for user-designed rules to be implemented. Microsoft states ...