IBM has an internal development and release process for ensuring code quality and to mitigate the risk of vulnerabilities. As part of the development process, all products are scanned by security vulnerability scanning tools to mitigate the risks of at least the following:
In addition, IBM Security products are developed and tested according to the best practices outlined in the IBM Secure Engineering Framework
We do not provide external security certifications for IBM Verify SDK. IBM recommends professional security scanning be performed on all mobile apps built with the SDK.