CSOonline

Remote code execution flaws in Spring and Spring Cloud frameworks put Java apps at risk

A remote code execution vulnerability in Spring Framework has sparked fears that it could have a widespread impact across enterprise environments. Spring is one of the most popular open-source ...
TheServerSide

Best Java static code analysis tools for code quality automation

One of the best ways to protect your software project from avoidable bugs is the use of Java static code analysis tools. These tools can help identify and fix problematic code before it reaches ...
NBC News

New Java Exploit Puts 1 Billion Computers at Risk

A new zero-day exploit in multiple versions of Java puts roughly 1 billion users at risk to attackers and malicious code. The flaw was discovered by researchers at Poland's Security Explorations, a ...
TheServerSide

A bug fix always beats a round of risk assessments

Community driven content discussing all aspects of software development from DevOps to design patterns. When static code analysis tools identify a bug in the production code, there are two approaches ...
Electronic Design

What's The Difference Between Static Analysis of C and C++ Versus Java Programs

There are common aspects to static analysis for C and C++ compared to Java but there are differences as well. Static analysis tools are in widespread use because they are effective at finding ...