The document discusses using open source tools for security test automation in software development. It describes FindBugs, PMD and Zed Attack Proxy as tools for static source code analysis and automated testing. These tools can find bugs and vulnerabilities but have some limitations. Commercial tools may perform better in a more integrated environment. Manual security reviews by experts can produce the best results but are also the most expensive option and performed late in the process. Overall, open source tools provide a good starting point for security test automation in an agile development process.