Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror
Trust the World's Fastest VPN with Your Internet Security & Freedom - A Lifetime Subscription of PureVPN at 88% off. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. ×

Submission + - Are code analysis tools always correct? (ibm.com)

An anonymous reader writes: I work at a company that makes software for call center optimization. Recently my boss arranged for my code to be tested by IBM AppScan tools for cross site scripting vulnerabilities. It found 233 of them, but most of them are false positives. Now my boss won't ship my code and has inserted an extra level of oversite on my outputs. No doubt other developers have experienced what I have, being smarter than IBM isn't hard after all, but I'm not sure how to convince my boss of this. Any tips?
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Are code analysis tools always correct?

Comments Filter:

You can bring any calculator you like to the midterm, as long as it doesn't dim the lights when you turn it on. -- Hepler, Systems Design 182

Working...