Software Integrity Blog

Author Archive

Ed Tice

etice

Ed Tice is a sales engineer at Synopsys. While he's a bit of a jack of all trades, his primary areas of expertise involve helping customers understand the mechanics of running static analysis, dynamic analysis, fuzzing, and test prioritization security tools.


Posts by Ed Tice:

 

Why dependencies matter for SAST

How do static analyzers manage code dependencies? There are many ways, but the best static analyzers take a hybrid approach to dependency analysis.

Continue Reading...

Posted in Developer Enablement, Static Analysis (SAST) | Comments Off on Why dependencies matter for SAST

 

Remediating XSS: Does a single fix work?

Remediating XSS (cross-site scripting, or HTML injection) is difficult without understanding validation, sanitization, and normalization/canonicalization.

Continue Reading...

Posted in Web Application Security | Comments Off on Remediating XSS: Does a single fix work?

 

How is static analysis a productivity tool for engineering teams?

The earliest accessible verification activity is static analysis. Learn why Coverity static analysis is the top productivity tool for engineering teams.

Continue Reading...

Posted in Static Analysis (SAST) | Comments Off on How is static analysis a productivity tool for engineering teams?