Lmst

1 million installs of the bitexpert/phpstan-magento Composer package. This is C.R.A.Z.Y!

https://github.com/bitExpert/phpstan-magento

Download statistics showing 1 million downloads of the bitexpert/phpstan-magento Composer package.

Static code analysis, such as that provided by spotbugs-maven-plugin, can help ease the code review burden and get early feedback on performance, style and possible functionality issues. #java #mavenBuild #maven #staticCodeAnalysis

http://codingchica.com/2023/10/16/adding-spotbugs-a-static-code-analysis-plugin/

In "NVMe: New Vulnerabilities Made Easy," we explore the potential impact of vulnerabilities in the widely-used NVMe protocol. From public clouds to on-premises machines, NVMe is everywhere, which means discovering vulnerabilities could have a significant impact.

In the post, we dive deep into a newly discovered vulnerability in the NVMe protocol and explore how it can be exploited. We also discuss the importance of static code analysis tools and how they can help identify vulnerabilities in large code bases.

Check out the post and let us know your thoughts in the comments!

https://www.cyberark.com/resources/threat-research-blog/nvme-new-vulnerabilities-made-easy

#NVMe #cybersecurity #vulnerabilityresearch #staticcodeanalysis 🕵️‍♂️🔍💻🛡️🚨

How do you know your application has a good architecture?

Use static code analysis tools to visualize the structure of your application and how different modules interact with each other.

We deep dive into two specific tools: https://www.upgradejs.com/blog/application-architecture-visualization.html?utm_source=Mastodon&utm_medium=Organic&utm_campaign=Blogpromo&utm_term=apparchitecture+&utm_content=Graphic&utm_id=

#webapplication #staticcodeanalysis #techdebt

Coverity segfaults on complex codebases, while Klocwork simply creates mind boggling stupid warnings.
Is there usable static code analysis for C++ out there?
Has to run self hosted, nothing that's "cloud only".
#StaticCodeAnalysis #linux