What's new in C# 9: overview https://pvs-studio.com/en/blog/posts/csharp/0860/

Technical support: what it's for and how to avoid burnout? https://pvs-studio.com/en/blog/posts/0861/

Text broadcast of Cppcast 300: ABI stability https://pvs-studio.com/en/blog/posts/cpp/0862/

Why do you need the MISRA Compliance report and how to generate one in PVS-Studio? https://pvs-studio.com/en/blog/posts/cpp/0863/

PVS-Studio C#: what to do if project preparation takes too long or freezes? https://pvs-studio.com/en/blog/posts/csharp/0864/

How Visual Studio 2022 ate up 100 GB of memory and what XML bombs had to do with it https://pvs-studio.com/en/blog/posts/csharp/0865/

We often get questions from developers or managers who hear about the PVS-Studio analyzer. What do they usually ask? We have a pretty extensive list! 📚 Today we've selected the most interesting questions and will try to answer them in this video https://www.youtube.com/watch?v=VQkqxPbv21Q

MISRA C: struggle for code quality and security https://pvs-studio.com/en/blog/posts/cpp/0866/

Creating Roslyn API-based static analyzer for C# https://pvs-studio.com/en/blog/posts/csharp/0867/

Why we need dynamic code analysis: the example of the PVS-Studio project https://pvs-studio.com/en/blog/posts/cpp/0868/

Applications that use unverified data are often vulnerable to a wide variety of attacks: SQL Injection, XSS, Path Traversal, etc. Taint analysis is a technology that helps detect potential vulnerabilities caused by the use of unverified data.

In this video, we'll talk about how taint analysis works and how it can help you keep applications secure.

https://t.co/eFwDQWXD1L?amp=1

CWE Top 25 2021. What is it, what is it for and how is it useful for static analysis? https://pvs-studio.com/en/blog/posts/0869/

Rob and Jason are joined by Amir Kirsh and Avi Lachmish from Incredibuild. They first discuss Idle, a new C++ framework, the September ISO mailing and an Algorithm Intuition Chart. Then they talk to Amir and Avi about the recent CoreCpp conference, Bjarne’s keynote and other talks from the conference.
https://cppcast.com/corecpp-amir-avi/

The software development intensifies from year to year. That's why developers often need various 'assistants' - programs that control code quality. Such assistants include static code analyzers that can find and fix flawed code (bugs, typos, vulnerabilities) at the early stages of development.

This article is a brief overview on popular static analyzers for Java code.

https://dzone.com/articles/protect-your-code-from-bugs-an-overview-of-five-st

Rob and Jason are joined by Remi Coulom from Kayufu. They first discuss another blog posts about the ongoing ABI problems in C++ and another on common mistakes with comparison functions. Then they talk to Remi about Joedb, the Journal-Only Embedded Database.
https://cppcast.com/joedb/

Text broadcast of CppCast 293: One Lone Coder https://pvs-studio.com/en/blog/posts/cpp/0870/

Detecting errors in the LLVM release 13.0.0 https://pvs-studio.com/en/blog/posts/cpp/0871/

PVS-Studio 7.15: MISRA, CWE, OWASP, Unreal Engine https://pvs-studio.com/en/blog/posts/0872/

No project is perfect - whichever open-source project you examine, you can find a bug, or two - or... Welcome to our new video series where we study cases like this one.
Let's start with MuseScore: we downloaded and inspected the project's source code. Now sit back and relax while we talk about the peculiar code fragments we found.

https://www.youtube.com/watch?v=SAVbpFTj81I