Text broadcast of CppCast 285: Clang Power Tools and C++ myths https://pvs-studio.com/en/blog/posts/cpp/0859/
Pvs-Studio
Text broadcast of CppCast 285: Clang Power Tools and C++ myths
Episode 285 CppCast was recorded on February 3rd, 2020. Hosts Rob Irving and Jason Turner are joined by Victor Ciura. They first talk about different ways to filter a C++ container and a bl…
What's new in C# 9: overview https://pvs-studio.com/en/blog/posts/csharp/0860/
PVS-Studio
What′s new in C# 9: overview
Although C# 9 came out over half a year ago, the community is still processing its immense list of changes and has yet to discover best practices for the new features. It′s a great excuse to go over...
Technical support: what it's for and how to avoid burnout? https://pvs-studio.com/en/blog/posts/0861/
Pvs-Studio
Technical support: what it
Not everyone enjoys working in support. Many people who work there experience burnout. So maybe companies shouldn't have any support at all? How do they benefit from it? Is there a way to p…
Text broadcast of Cppcast 300: ABI stability https://pvs-studio.com/en/blog/posts/cpp/0862/
PVS-Studio
Text broadcast of Cppcast 300: ABI stability
Episode 300 of CppCast with guest Marshall Clow recorded May 18th, 2021. In this episode, Rob Irving and Jason Turner are joined by Marshall Clow who talks about ABI stability. They also discuss...
Why do you need the MISRA Compliance report and how to generate one in PVS-Studio? https://pvs-studio.com/en/blog/posts/cpp/0863/
Pvs-Studio
Why do you need the MISRA Compliance report and how to generate …
If you are strongly interested in MISRA and would like to understand whether your project meets one of the MISRA association's standards, there is a solution. It's name is MISRA Compliance.…
PVS-Studio C#: what to do if project preparation takes too long or freezes? https://pvs-studio.com/en/blog/posts/csharp/0864/
Pvs-Studio
PVS-Studio C#: what to do if project preparation takes too long …
Some users of the PVS-Studio C# analyzer faced a problem: the project preparing stage either took much time or even froze. This article covers how the problem manifested itself and how we f…
How Visual Studio 2022 ate up 100 GB of memory and what XML bombs had to do with it https://pvs-studio.com/en/blog/posts/csharp/0865/
PVS-Studio
How Visual Studio 2022 ate up 100 GB of memory and what XML bomb…
In April 2021 Microsoft announced a new version of its IDE – Visual Studio 2022 – while also announcing that the IDE would be 64-bit. We′ve been waiting for this for so long – no more 4 GB …
We often get questions from developers or managers who hear about the PVS-Studio analyzer. What do they usually ask? We have a pretty extensive list! 📚 Today we've selected the most interesting questions and will try to answer them in this video https://www.youtube.com/watch?v=VQkqxPbv21Q
YouTube
Everything You Wanted to Know About PVS-Studio
We often get questions from developers or managers who hear about the PVS-Studio analyzer. What do they usually ask? We have a pretty extensive list! 📚 Today we've selected the most interesting questions and will try to answer them in this video ☝️
00:00…
00:00…
MISRA C: struggle for code quality and security https://pvs-studio.com/en/blog/posts/cpp/0866/
PVS-Studio
MISRA C: struggle for code quality and security
A couple of years ago the PVS-Studio analyzer got its first diagnostic rules to check program code compliance with the MISRA C and MISRA C++ standards. We collected feedback and saw that our clients...
Creating Roslyn API-based static analyzer for C# https://pvs-studio.com/en/blog/posts/csharp/0867/
PVS-Studio
Creating Roslyn API-based static analyzer for C#
After you read this article, you'll have the knowledge to create your own static analyzer for C#. With the help of the analyzer, you can find potential errors and vulnerabilities in the sou…
Why we need dynamic code analysis: the example of the PVS-Studio project https://pvs-studio.com/en/blog/posts/cpp/0868/
Pvs-Studio
Why we need dynamic code analysis: the example of the PVS-Studio…
In May 2021, CppCast recorded a podcast called ABI stability (CppCast #300). In this podcast, Marshall Clow and the hosts discussed rather old news — Visual Studio compilers support the Add…
Applications that use unverified data are often vulnerable to a wide variety of attacks: SQL Injection, XSS, Path Traversal, etc. Taint analysis is a technology that helps detect potential vulnerabilities caused by the use of unverified data.
In this video, we'll talk about how taint analysis works and how it can help you keep applications secure.
https://t.co/eFwDQWXD1L?amp=1
In this video, we'll talk about how taint analysis works and how it can help you keep applications secure.
https://t.co/eFwDQWXD1L?amp=1
YouTube
How Can Taint Analysis Protect You from Attacks? [SQL Injenctions] [Path Traversal]
Applications that use unverified data are often vulnerable to a wide variety of attacks: SQL Injection, XSS, Path Traversal, etc. Taint analysis is a technology that helps detect potential vulnerabilities caused by the use of unverified data. In this video…
CWE Top 25 2021. What is it, what is it for and how is it useful for static analysis? https://pvs-studio.com/en/blog/posts/0869/
Pvs-Studio
CWE Top 25 2021. What is it, what is it for and how is it useful…
For the first time PVS-Studio provided support for the CWE classification in the 6.21 release. It took place on January 15, 2018. Years have passed since then and we would like to tell you …
Rob and Jason are joined by Amir Kirsh and Avi Lachmish from Incredibuild. They first discuss Idle, a new C++ framework, the September ISO mailing and an Algorithm Intuition Chart. Then they talk to Amir and Avi about the recent CoreCpp conference, Bjarne’s keynote and other talks from the conference.
https://cppcast.com/corecpp-amir-avi/
https://cppcast.com/corecpp-amir-avi/
The software development intensifies from year to year. That's why developers often need various 'assistants' - programs that control code quality. Such assistants include static code analyzers that can find and fix flawed code (bugs, typos, vulnerabilities) at the early stages of development.
This article is a brief overview on popular static analyzers for Java code.
https://dzone.com/articles/protect-your-code-from-bugs-an-overview-of-five-st
This article is a brief overview on popular static analyzers for Java code.
https://dzone.com/articles/protect-your-code-from-bugs-an-overview-of-five-st
dzone.com
Protect Your Code From Bugs - DZone Java
Developers often need various "assistants" — these include static code analyzers which can find and fix flawed code at the early stages of development.
Rob and Jason are joined by Remi Coulom from Kayufu. They first discuss another blog posts about the ongoing ABI problems in C++ and another on common mistakes with comparison functions. Then they talk to Remi about Joedb, the Journal-Only Embedded Database.
https://cppcast.com/joedb/
https://cppcast.com/joedb/
Text broadcast of CppCast 293: One Lone Coder https://pvs-studio.com/en/blog/posts/cpp/0870/
Pvs-Studio
Text broadcast of CppCast 293: One Lone Coder
On this episode, Rob Irving and Jason Turner are joined by David Barr. First, they discuss Microsoft open-source calculator and an update to CMake. Then they talk about David's YouTube chan…
Detecting errors in the LLVM release 13.0.0 https://pvs-studio.com/en/blog/posts/cpp/0871/
PVS-Studio
Detecting errors in the LLVM release 13.0.0
Commercial static analyzers perform deeper and fuller code analysis compared to compilers. Let′s see what PVS-Studio found in the source code of the LLVM 13.0.0 project.
PVS-Studio 7.15: MISRA, CWE, OWASP, Unreal Engine https://pvs-studio.com/en/blog/posts/0872/
Pvs-Studio
PVS-Studio 7.15: MISRA, CWE, OWASP, Unreal Engine
We are actively developing the PVS-Studio static analysis tool towards detecting Safety and Security-related errors. To be more precise, we've expanded the coverage of the MISRA C:2012 and …