Nature

Static Code Analysis and Bug Detection

Static code analysis and bug detection are integral to modern software engineering, providing a systematic approach to identify defects and security vulnerabilities without executing the code. By ...
InfoQ

GitHub Announces Code Scanning and Security Advisory Support for Swift

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Senyo Simpson discusses how Rust's core ...
CSOonline

Arnica’s real-time, code-risk scanning tools aim to secure supply chain

Software supply chain security provider Arnica has added new real-time scanning tools to its namesake code-security suite, including static application security testing (SAST), infrastructure as code ...
TechCrunch

GitHub’s latest AI tool can automatically fix code vulnerabilities

It’s a bad day for bugs. Earlier today, Sentry announced its AI Autofix feature for debugging production code and now, a few hours later, GitHub is launching the first beta of its code-scanning ...
InfoWorld

Five ways your code is coupled, for better or worse

Understanding the five kinds of static connascence will help you see more deeply into your code and how it works – and how you could make it better. Last week I talked about connascence, a measure of ...
InfoWorld

How CodeRabbit brings AI to code reviews

CodeRabbit combines code graph analysis and the power of large language models to identify issues in pull requests and suggest improvements, or even generate those improvements in a new branch. Code ...