TheServerSide

OpenStack develops its own static code analysis tool for Python

It has become standard fare for large, enterprise organizations to reach out to the open source community to fill the void between the software their projects need, and the amount of software their ...
InfoQ

Heuristic Static Analysis Tool GuardDog Used to Detect Several Malicious PyPi Packages

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Electronic Design

What's New in Static Analysis Technology

I had a chance to talk with Dr. Benjamin Brosgol of Adacore about the latest static analysis technology including how it fits into the software development life cycle. Wong: What is your definition of ...
Dark Reading

Why It’s Insane To Trust Static Analysis

In a previous blog, Jason Schmitt, the vice president and general manager of HP Fortify, promotes the static (Oops… status) quo by spreading some fear, uncertainty ...
CSOonline

Source Code Analysis Tools: How to Choose and Use Them

The high cost of finding and patching application flaws is well known. Wouldn’t it be cheaper to write secure code in the first place? More on code analysis tools and software security Source code ...
TheServerSide

Static code analysis with Klocwork

Given the great emphasis Agile teams place on the importance of software testing, it is surprising that organizations don't invest more time and money in static software testing tools. Of course, with ...
EDN

7 uses for a static code analyzer

One of the problems with a standard C compiler is that it doesn’t look for potential flaws in a program's design, only in its coding. The use of a static code analyzer can help to improve firmware and ...