What practice ensures that application code does not contain known vulnerabilities?
Continuous integration without testing
Prioritizing manual code deployment
Static code analysis
Delaying code reviews until after deployment