This Week in Security: Code Scanning, Information Gathering, and Seams in the Cloud
GitHub has enabled free code analysis on public repositories. This is the fruit of the purchase of Semmle, almost exactly one year ago. Anyone with write permissions to a repository can go into the settings, and enable scanning. Beyond the obvious use case of finding vulnerabilities, an exciting option is …read more
Continue reading This Week in Security: Code Scanning, Information Gathering, and Seams in the Cloud