Our website uses cookies to enhance your browsing experience.
Accept
to the top
Home
>
Posts

Posts

All Articles Video Books Entertainment
Errors
#CSharp #Security
Oct 22 2021
OWASP Top Ten and Software Composition Analysis (SCA)
Nikita Lipilin
The OWASP Top Ten 2017 category A9 (which became A6 in OWASP Top Ten 2021) is dedicated to using components with known vulnerabilities. To cover this category in PVS-Studio, developers have to...
...
#CSharp #Knowledge
Oct 20 2021
What's new in C# 10: overview
Valentin Prokofiev
This article covers the new version of the C# language - C# 10. Compared to C# 9, C# 10 includes a short list of enhancements. Below we described the enhancements and added explanatory...
...
Subscribe to the newsletter
Want to receive a monthly digest of the most interesting articles and news? Subscribe!
#Security
Oct 14 2021
The OWASP diagnostic group in PVS-Studio
Nikita Lipilin
The PVS-Studio static analyzer allows you to automatically find various problems in the source code. It can also detect code fragments that do not comply with the OWASP Application...
...
#Cpp
Oct 12 2021
C++ tools evolution: static code analyzers
Andrey Karpov
Modern applications have lots of code. And the C++ language doesn't get easier. Nowadays, code reviews are not enough to fully analyze program code. Here's where static code analysis comes...
...
Oct 11 2021
Short-lived music [MuseScore code analysis]
Yulia Khushnamova
No project is perfect - whichever open-source project you examine, you can find a bug, or two - or... Welcome to our new video series where we study cases like this one. Let's start with MuseScore: we downloaded and inspected the project's source code. Now sit back and…
...
#Release
Oct 11 2021
PVS-Studio 7.15: MISRA, CWE, OWASP, Unreal Engine
Andrey Karpov
We are actively developing the PVS-Studio static analysis tool towards detecting Safety and Security-related errors. To be more precise, we've expanded the coverage of the MISRA C:2012 and OWASP...
...
#Cpp #Compiler
Oct 08 2021
Detecting errors in the LLVM release 13.0.0
Andrey Karpov
Commercial static analyzers perform deeper and fuller code analysis compared to compilers. Let's see what PVS-Studio found in the source code of the LLVM 13.0.0...
...
#Cpp #Broadcasting
Oct 04 2021
Text broadcast of CppCast 293: One Lone Coder
CppCast
On this episode, Rob Irving and Jason Turner are joined by David Barr. First, they discuss Microsoft open-source calculator and an update to CMake. Then they talk about David's YouTube channel...
...
#Knowledge #Security
Sep 28 2021
CWE Top 25 2021. What is it, what is it for and how is it useful for static analysis?
Mikhail Gelvikh
For the first time PVS-Studio provided support for the CWE classification in the 6.21 release. It took place on January 15, 2018. Years have passed since then and we would like to tell you about...
...
Sep 27 2021
How Can Taint Analysis Protect You from Attacks? [SQL Injenctions] [Path Traversal]
Yulia Khushnamova
Applications that use unverified data are often vulnerable to a wide variety of attacks: SQL Injection, XSS, Path Traversal, etc. Taint analysis is a technology that helps detect potential vulnerabilities caused by the use of unverified data. In this video, we'll talk …
...
View more Pagination arrow previous
1
...
46 47 48 49 50
...
161
Showing: - of 1605