Archive for 2011

  • All static analysis tools are not created equal

    on Mar 8, 11 • by Brendan Harrison • with No Comments

    Yes, it’s true (!) and as anyone in this space knows there is a huge difference between static analysis tools, their level of sophistication, and their approach to developer adoption. Gary McGraw & John Steven from Cigital describe their views on this topic including ‘5 pitfalls’ that customers should avoid when evaluating tools. These pitfalls mostly amount to the fact that analysis results across different tools, code bases, and tool operators can make results vary significantly, so be aware of this fact when conducting your benchmarking. Their overall recommendation: “The upshot? Use your own code instead

    Read More »
  • Another resource leak

    on Mar 1, 11 • by Alen Zukich • with 1 Comment

    It happened again.  For what seems like the 100th time, someone reports to me that they are seeing a number of false positive reports on the resource leak checker.  For those not familiar with a resource leak, take a look at a previous post.  Although resource leaks apply across most languages, the place where this question keeps coming  up seems to always be in Java or C# code.  My last query came from Java code, so we will use that as an example.  Here was a report where the FileInputSteam is not closed on exit

    Read More »
  • How developers drive testers nuts–let’s count the ways

    on Feb 17, 11 • by Patti Murphy • with 4 Comments

    10-11-2012 3-28-31 PM

    At daily standup meetings, they eye each other from opposite sides of the room. Sitting on the same side of the cubicle wall is unthinkable. They’re united only by their desire to produce quality software products and their appreciation for coffee and energy drinks. What’s good to one side can be anathema to the other when it comes to code. I’m talking, of course, about testing and development teams. In the interests of generating more comments improving dialogue between two very important functions in a software organization, our marketing director asked me to interview our

    Read More »
  • Dealing with a different type of backlog…your bug backlog

    on Feb 3, 11 • by Todd Landry • with 2 Comments

    Debugging

    As a product manager, the only backlog I typically care about is my product backlog. Do I have the right stories in there? Do the stories have enough detail? Are they properly prioritized? You know, that kind of stuff. Today, however, I’m going to write about a very different backlog, that is the static analysis defect backlog. A static analysis backlog is created when you run a static analysis product on your code base for the very first time. Chances are pretty good that the first analysis is going to list a large number of defects,

    Read More »
  • Pre-Branding in Mobile

    on Feb 2, 11 • by Vahid Jozi • with No Comments

    Overcome-Frustration

    The year 2008 was a key year for mobile applications. In that year, Apple released its iOS SDK in March and launched the App Store with the release of iOS 2.0 in July. Let’s call it the start of the Mobile Gold Rush. Now in this mobile gold rush, there are hundreds of thousands of applications and amongst them many are bound to have the same idea and the same purpose. How does one app shine, while others won’t even get visits to their description pages? Let me tell you about an experience I had

    Read More »
  • The Co-op Experience (Part I)

    on Jan 27, 11 • by Kevin Welsh • with 1 Comment

    Leap of Faith

    After six years of post-secondary education, my first day of the real world had finally come.   As I approached the doors to Klocwork, I realized it was time to put all my years of education to the test. Straight out of high school, I had little idea of what career path I should take. Four years of university passed and I graduated with a B.A. in English, but still, I didn’t feel prepared. Another two years of college in media-related studies and, ready or not, it was time to make the leap into the working

    Read More »
  • Porting gotchas

    on Jan 25, 11 • by Alen Zukich • with 2 Comments

    Top 10 porting issues

    If you’ve ever gone through the process of porting an application, you know the pain.  Porting can be difficult if you’re not vigilant from the outset.  There are tons of written guidelines and best practices for specific platforms or architectures, such as those going to 64 bit for Windows apps or Intel architecture and Mac OS. In the past, we have talked about Endian issues, which are very specific to porting from different architectures (big-endian vs little-endian).  This time I want to take you through some general porting issues to show you how you can

    Read More »
  • Patterns of Bugs

    on Jan 18, 11 • by Brendan Harrison • with 1 Comment

    Patterns of Bugs

    Nice blog post from Walter Bright over at Dr. Dobbs on the Patterns of Bugs. He ties together bug patterns, recommended process changes, and the resulting productivity payoff from making these improvements. He recommends a bunch of process changes, including static analysis, code reviews, and coding standards, then goes on to review examples of different bug patterns. A few can be detected with static analysis (coding mistakes as written) but many are errors with the code as intended (something static analysis doesn’t check… that’s what testing is for). His main recommendation seems to be that

    Read More »
  • Klocwork Joins Forces with Logic Technology to Help Embedded Software Developers Boost Productivity While Addressing Quality and Security Issues

    on Jan 17, 11 • by Meranda Powers • with No Comments

    New reseller relationship extends Klocwork’s reach in Germany and Benelux markets BURLINGTON, Mass — Jan 17, 2011 — Klocwork, Inc, the global leader in automated source code analysis solutions for improving developer productivity, today announced a reseller and services partnership with Logic Technology, a leading provider of software development tools for the European embedded market. The agreement adds Klocwork Insight and Klocwork Insight Pro to Logic Technology’s product portfolio to help embedded software developers ensure the quality and security of their source code. "We’re seeing embedded development teams facing significant productivity challenges as they deal

    Read More »
  • Medical Devices Roadshow – Minneapolis style

    on Jan 14, 11 • by Todd Landry • with 2 Comments

    medical-devices

    Yesterday we did our second Medical Devices software seminar, this time in snowy and cold Minneapolis. Say what you will about the weather, but this city is built for winter…it has various overhead ‘tunnels’ called ‘skyways‘ connecting what seemed to be the entire downtown core, so you rarely ever need to go outside. Anyways, our seminar drew the interest of over 75% of registrants, mostly software engineers and QA, so really another great turnout. The format was the same as our Boston event, with the same players from SterlingTech, Klocwork (duh) and Vector Software. There

    Read More »
Scroll to top