Applications that use unverified data are often vulnerable to a wide variety of attacks: SQL Injection, XSS, Path Traversal, etc. Taint analysis is a technology that helps detect potential vulnerabilities caused by the use of unverified data. In this video, we'll talk about how taint analysis works and how it can help you keep applications secure.
We often get questions from developers or managers who hear about the PVS-Studio analyzer. What do they usually ask? We have a pretty extensive list! Today we've selected the most interesting questions and will try to answer them in this video.
How to write clean code? There are books and articles on that. But we decided not to stand aside and share our recommendations. At PVS-Studio, we develop a static code analyzer, so we've had a great deal of experience in finding problem areas in code.
How many myths are there in the world! It's time to dispel them. We'll start with the static code analysis, of course. Feel free to join us to learn more about these noisy helpers 📣
С# developers often use LINQ extension methods in the apps they develop. These methods are easy to use. Their calls are easier to read than foreach loops. But what do the developers pay for the aesthetics and convenience? Is it really worth it?