SmartBear News

Just Announced: SmartBear Acquires Bitbar

Thursday, September 26, 2019

Want to know more about this week’s news around the latest SmartBear acquisition? Our own Anand Sundaram sits down to explain why Bitbar was such a natural fit for the SmartBear product portfolio, and what challenges our two companies are teaming up to solve for customers around the globe. Noel: We made a big announcement …

Static Analysis tool CodeSonar

How Sound Static Analysis Complements Heuristic Analysis

Wednesday, September 18, 2019

Not all static analysis tools work the same, there are in fact a spectrum of tools that use a variety of techniques ranging from relatively simple syntactic analysis through very sophisticated abstract interpretation-like algorithms that reason about potential executions. Each approach has its strengths and weaknesses and often tools, like GrammaTech CodeSonar, use a combination …

software security - DevSecOps

Tainted Data and Format String Attack Strike Again

Monday, September 09, 2019

A recent code execution vulnerability (we also call this a code injection vulnerably) was discovered in Palo Alto Networks’ GlobalProtect SSL VPN, a product that handles SSL handshakes and in particular, certain versions of the software running on these products, PAN-OS. The vulnerability was discovered by security researchers Orange Tsai and Meh Chang and documented on their blog. …

webinar

Webinar: Continuous Assessment of Code Quality, Metrics that Matter

Tuesday, September 03, 2019

Date: September 10, 2019 Time: 3pm Registration: https://zoom.us/webinar/register/WN_5itU5G-zRt-VSGGg3Zbcvw Assessing the quality of an application’s code is often a subjective process. This is why we turn to code metrics — quantitative measurements that provide valuable insights into our application’s code. Software Developers and Managers can take advantage of code metrics to understand the quality of the …