A Zero-day (0-day) vulnerability is a computer-software vulnerability introduced during the development process and not yet discovered by the developers. Zero-day vulnerabilities can be exploited by hackers, thus affecting the company’s reputation. Developers should seek to minimize the number of defects leading to such vulnerabilities. PVS-Studio, a static code analyzer for C, C++, C#, and Java code, is one of the tools capable of detecting security issues.
static code analysis
RunUO
Double checked locking
Continue reading
Handling Objections: Static Analysis Will Take up Part of Working Time
Talking to people at conferences and in comments to articles, we face the following objection: static analysis reduces the time to detect errors, but takes up programmers’ time, which negates the benefits of using it and even slows down the development process. Let’s get this objection straightened out and try to show that it’s groundless.
Static Analysis in Theory and in Practice
There are many ways that can assist in improvement the program’s quality. In this article, we invite you to consider one of them – static code analysis.
Continue reading
VVVVVV
An odd implicit type casting
Continue reading
Emby
Copy-Paste
Continue reading
SARIF SDK
NullReferenceException is possible
Continue reading
Apache Hadoop
MapReduce
Continue reading
Huawei Cloud
Copy-Paste
Continue reading
Telerik UI for UWP
An unconditional break
Continue reading
