Software Integrity Blog

Archive for the 'Static Analysis (SAST)' Category

 

Coverity release ties in well to the latest MITRE CWE Top 25

MITRE’s 2019 CWE Top 25 list contains many code quality issues that can result in security vulnerabilities. Static analysis can help you mitigate them.

Continue Reading...

Posted in Quality & Compliance, Security Standards and Compliance, Static Analysis (SAST) | Comments Off on Coverity release ties in well to the latest MITRE CWE Top 25

 

Why your SAST tool needs to understand your web framework

Web frameworks can introduce security issues into web applications. Mitigate this risk with a static analysis tool that understands the frameworks you use.

Continue Reading...

Posted in Static Analysis (SAST), Web Application Security | Comments Off on Why your SAST tool needs to understand your web framework

 

Do you have the right tools in your application security toolkit?

With so many application security tools, how do you choose the best ones for your environment? Learn how to assemble your application security toolkit.

Continue Reading...

Posted in Static Analysis (SAST), Web Application Security | Comments Off on Do you have the right tools in your application security toolkit?

 

How are code quality and code security related?

Code quality and code security aren’t the same, but they’re closely related. And in the current cyberthreat environment, developers should care about both.

Continue Reading...

Posted in Internet of Things, Static Analysis (SAST), Web Application Security | Comments Off on How are code quality and code security related?

 

Announcing Code Sight 2019.4

The Code Sight IDE plugin uses the Coverity static analysis engine to find issues as developers code. Release 2019.4 supports more languages and IDEs.

Continue Reading...

Posted in Static Analysis (SAST) | Comments Off on Announcing Code Sight 2019.4

 

How to win the application security arms race

Static application security testing helps you find and fix vulnerabilities earlier in the development life cycle, resulting in more secure software.

Continue Reading...

Posted in Static Analysis (SAST) | Comments Off on How to win the application security arms race

 

How to manage web application security with Coverity

Improve your web application security management by finding and fixing security vulnerabilities earlier and achieving compliance with industry standards.

Continue Reading...

Posted in Static Analysis (SAST) | Comments Off on How to manage web application security with Coverity

 

So you just bought a SAST tool. Now what?

You’ve finally purchased a static analysis solution—but do you know how to use it? Learn how to implement SAST tools in a way that best suits your environment.

Continue Reading...

Posted in Static Analysis (SAST) | Comments Off on So you just bought a SAST tool. Now what?

 

How to choose between enterprise and open source static analysis

Both enterprise and open source static analysis tools can boost your application security program. But each has its strengths. Learn more before you choose.

Continue Reading...

Posted in Static Analysis (SAST) | Comments Off on How to choose between enterprise and open source static analysis

 

Making SAST easier, faster, and more integrated with Polaris

How can development teams make SAST easier? By using a platform that’s fast, accurate, and flexible and integrates with the tools they already use.

Continue Reading...

Posted in Static Analysis (SAST) | Comments Off on Making SAST easier, faster, and more integrated with Polaris