The objective of this four-part article is to provide an overview of security issues identified through the Cockpit. Unlike other surveys which are based on theoretical approaches more or less exhaustive, approach is here empirical: problems mentioned are those we detect through our automated analyses on our customer projects (static analysis on Java or C# [...]

A new award in our trophy room: The 2009 Innovation Price from the European Security and Information System Congress ! This price is important due to its notoriety and to the jury’s composition, composed by the security managers of several top firms (SNCF, BNP Paribas, SFR, etc…). It particularly delighted us by highlighting the Security [...]

We recently published a Société Générale testimonial that explained that the company had successfully reduced some of its processing time from 20 minutes to 20 seconds by using our Quality Cockpit on one of its projects. Too much to be credible? Let’s see how a statistical analysis of code helps to detect performance problems earlier, [...]

By examining the results of analyses on our customers’ projects on our Cockpit SaaS platform, it is clear that a “Quick Win” strategy is often used for corrections. The team prioritizes glaring bugs (like floating point comparisons and synchronization problems) that are quick to correct (dead code, redundant casting, missing documentation headers, etc.).

What is quality software? The answer will largely depend on the role of the person you ask. A user will focus on their needs, while someone in charge of maintenance will prefer code that is reliable, readable, and understandable. Some will be happy with a quantitative definition (ex. the number of bugs per 1000 instructions), [...]

Each article in the Practice category focuses on a bad development practice detected by Kalistick’s Cockpit. Calling a derivable internal method (not final in Java, or virtual in C#) from the class constructor is a risky practice. If the method is overloaded, inconsistencies or even errors may arise. The intrinsic reasons for these errors are [...]