Code reviews can be automated with the help of static analysis tools. Keep in mind that one-off code checks are unproductive, so it is important to make static code analysis an integral part of...
PVS-Studio 7.24 is released. We enhanced the analysis of Unity projects, introduced new features for handling suppress files (*.suppress), implemented new diagnostic rules, and so on. Learn...
What is Winnie and why is it called so? What was the initial name of JavaScript? What did the first bug look like? Take the quiz and prove that you are a true IT...
SAST and DAST are two different approaches used to search for errors and vulnerabilities in the code. It's better not to choose one or the other but apply both methods. Let's discuss the pros...
With this article we invite you to try the new web service from PVS-Studio. We're talking about the user's personal account. It will be useful to the active readers of our blog, as well as those...
This article is about a popular network on the Internet – Reddit. For those who don't know what Reddit is, it's a platform that connects thousands of communities of diverse interests. We respect...
Usually, when developers make a new release of an assembly, they also change its version. Changing the version is particularly important when developing a library on which other projects depend...
In this article, we're going to discuss the CVE-2020-36620 vulnerability and see how a NuGet package for converting string to enum can make a C# application vulnerable to DoS...
Static code analysis is valuable because it helps detect errors in the early stages of development. However, it is not omnipotent and there are a number of limitations that prevent it from...
