SAST and SCA: Putting the Puzzle Together

Thursday, August 27, 2020

Developing correct and secure software isn’t easy. A typical application includes a large amount of original and third-party code, and it all has to work together without opening up security holes. Any change to existing code, whether it’s a simple refactoring or the addition of a major feature, could create a new risk. Checking the …

modular architecture

Modularity and Agile Architecture

Thursday, August 20, 2020

What is Agile Architecture? Architecture is an important aspect of agile software development efforts. It is critical to scaling agile to meet the needs of the business. “Agile architecture is a set of values and practices that support the active evolution of the design of a system, concurrent with the implementation of new business functionality”. The …

Swaggerhub developer perspective

A Developer’s Perspective of CI/CD Integrations with SwaggerHub

Thursday, August 13, 2020

In my career thus far I’ve been very fortunate to have held positions at various stages along the software development lifecycle and beyond. It’s given me great insight and appreciation for the demands of today’s developers. Whether I’ve been speaking to frustrated developers on a product demo, or in the depths of the code base …

CodeSonar for Java and C#. Julia tools.

Expanding CodeSonar SAST Capabilities with Java and C#

Wednesday, August 05, 2020

GrammaTech recently acquired the intellectual property and assets of JuliaSoft S.r.l. to extend its CodeSonar Static Application Security Testing (SAST) platform with automated code analysis for Java and C# code. This an exciting announcement because of how well the Julia static analysis engine fits with CodeSonar and both team’s approach to quality, safety and security. …