Netlify has integrated Static Application Security Testing (SAST) tooling in CI pipelines to improve security posture. However, they found that even the greatest SAST tools often fail in practice and decided to use GitHub Advanced Security instead. The main challenges of SAST are getting vulnerability notifications in front of developers in a way that is worthwhile and actionable, adjusting alerting severity, suppressing false positives, creating workable issues, reducing reliance on security teams, empowering developer's security intentions, and addressing larger challenges such as monorepos, recasting severity, exceptions, and time-boxed exceptions. Netlify has implemented GitHub Advanced Security to reduce context switching, burnout, and cost, while providing a comprehensive UI that reduces the burden on developers and security teams.