InfoQ Homepage Static Analysis Content on InfoQ
Articles
RSS Feed-
/articles/software-engineering-google/en/smallimage/software-engineering-google-s-1622200397846.jpg)
Software Engineering at Google: Practices, Tools, Values, and Culture
The book Software Engineering at Google provides insights into the practices and tools used at Google to develop and maintain software with respect to time, scale, and the tradeoffs that all engineers make in development. It also explores the engineering values and the culture that’s based on them, emphasizing the main differences between programming and software engineering.
-
/articles/three-faces-DevSecOps/en/smallimage/logo-devops-1527029200861.jpeg)
The Three Faces of DevSecOps
DevSecOps is here to stay, as more vendors use the term. But what is it? A security solution that supports DevOps technologies, or adapts to DevOps methodologies, or embraces the DevOps philosophy?
-
/articles/book-review-effective-debugging/en/smallimage/cover.jpg)
Q&A with Diomidis Spinellis on Effective Debugging
The book Effective Debugging by Diomidis Spinellis describes 66 different approaches for effective debugging of applications and systems. It provides methods, strategies, techniques, and tools for finding and removing faults, and gives examples for using them in different settings.
-
/articles/preventing-software-disasters/en/smallimage/logo.jpg)
The Holistic Approach: Preventing Software Disasters
Olivier Bonsignour on what "X-Raying" software means, how it can help prevent software disasters and why CIOs should care.
-
/articles/technical-social-history-software/en/smallimage/logo.jpg)
Interview and Book Review of The Technical and Social History of Software Engineering
Capers Jones wrote the book The Technical and Social History of Software Engineering in which he provides an overview of the evolution of information technology and software development. InfoQ interviewed Capers about advancements and events in software engineering and the effects that they have had on our society.
-
/articles/Java-Concurrency-Static-Analysis-with-ThreadSafe/en/smallimage/logo.jpg)
Discover and Diagnose Java Concurrency Problems Using Contemplate's ThreadSafe
Writing Java software that correctly and safely makes use of concurrency requires careful thought. Software that incorrectly accounts for concurrency can contain intermittent defects that elude even the most rigorous testing regimes. Static analysis tools can analyze source code or compiled bytecode to discover latent bugs hidden within code, long before it is executed.
-
/articles/dotnet-static-analysis/en/smallimage/small image.jpg)
.NET Static Analysis and Parasoft dotTEST
Static analysis has a broad set of capabilities to offer the .NET world. It can enforce pattern-based rules, whether they're based on proven standards or custom patterns that help you identify application-specific defects. Nevertheless, some defects cannot be detected by this analysis technique. The flow analysis feature of dotTEST does exactly that.
-
/articles/chess-secureprog/en/smallimage/static-analysis-logo.jpg)
Brian Chess on Static Code Analysis
Building security into software applications from the initial phases of development process is critical. Static code analysis gives developers the ability to review their code without actually executing it to uncover potential security vulnerabilities. InfoQ spoke with Brian Chess about static analysis and how it compares with other security assessment techniques like penetration testing.