BT

InfoQ Homepage Static Analysis Content on InfoQ

Articles

RSS Feed
  • The Three Faces of DevSecOps

    DevSecOps is here to stay, as more vendors use the term. But what is it? A security solution that supports DevOps technologies, or adapts to DevOps methodologies, or embraces the DevOps philosophy?

  • Q&A with Diomidis Spinellis on Effective Debugging

    The book Effective Debugging by Diomidis Spinellis describes 66 different approaches for effective debugging of applications and systems. It provides methods, strategies, techniques, and tools for finding and removing faults, and gives examples for using them in different settings.

  • The Holistic Approach: Preventing Software Disasters

    Olivier Bonsignour on what "X-Raying" software means, how it can help prevent software disasters and why CIOs should care.

  • Interview and Book Review of The Technical and Social History of Software Engineering

    Capers Jones wrote the book The Technical and Social History of Software Engineering in which he provides an overview of the evolution of information technology and software development. InfoQ interviewed Capers about advancements and events in software engineering and the effects that they have had on our society.

  • Discover and Diagnose Java Concurrency Problems Using Contemplate's ThreadSafe

    Writing Java software that correctly and safely makes use of concurrency requires careful thought. Software that incorrectly accounts for concurrency can contain intermittent defects that elude even the most rigorous testing regimes. Static analysis tools can analyze source code or compiled bytecode to discover latent bugs hidden within code, long before it is executed.

  • .NET Static Analysis and Parasoft dotTEST

    Static analysis has a broad set of capabilities to offer the .NET world. It can enforce pattern-based rules, whether they're based on proven standards or custom patterns that help you identify application-specific defects. Nevertheless, some defects cannot be detected by this analysis technique. The flow analysis feature of dotTEST does exactly that.

  • Brian Chess on Static Code Analysis

    Building security into software applications from the initial phases of development process is critical. Static code analysis gives developers the ability to review their code without actually executing it to uncover potential security vulnerabilities. InfoQ spoke with Brian Chess about static analysis and how it compares with other security assessment techniques like penetration testing.

BT

Is your profile up-to-date? Please take a moment to review and update.

Note: If updating/changing your email, a validation request will be sent

Company name:
Company role:
Company size:
Country/Zone:
State/Province/Region:
You will be sent an email to validate the new email address. This pop-up will close itself in a few moments.