Ulrich completed the security audit of our new security checker tool thus we could merge it to the production branch. I immediately tried to make some use of it by adding meta descriptions to some well audited functions to allow the tool doing automatic pre-auditing of new code only using functions with complete meta descriptions. According to my first tests our manually audited code seems to be pretty clean according to the tool. Cross-checking with some external code that did not get a manual code audit did show that the tool could actually detect many problems. Seems the tool could really be helpful in the future when implementing new code or when looking at existing one.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment