Skip to main content
Author headshot

Stuart Foster

Klocwork and Helix QAC Product Manager

Latest Content from Stuart Foster

Blog

Common Vulnerability Scoring System: What Is CVSS in Cybersecurity?

Explore what is the Common Vulnerability Scoring System (CVSS) score explained, and how CVSS is used to calculate risk.
Security & Compliance, Software Quality
Blog

How to Get Started with DevSecOps 101 for Embedded Software

Embedded software developers can bring security up to speed with modern development by integrating DevSecOps into the software development lifecycle. Get started with DevSecOps 101 with these best practices.
DevOps, Security & Compliance, Coding Best Practices
Blog

What Is Buffer Overflow? Preventing Buffer Overrun

One of the most common code vulnerabilities is a buffer overflow vulnerability. If a buffer overflow vulnerability is not addressed, an untrustworthy agent can take advantage and cause a buffer overrun. For that reason, it is important to understand what is buffer overflow, which will greatly help you with preventing buffer overflow.
Security & Compliance, DevOps
Blog

9 Tips for Working With Legacy Code

Coding Best Practices, Software Quality
Blog

Are Self-Driving Cars Safe?

Cars are increasingly dependent on technology and will progressively become more autonomous — and ultimately self-driving. For this reason, it's important to learn about the security concerns with self-driving cars so you can answer the questions "are self-driving cars safe" and "in what ways are driverless cars safer than human drivers?"
Security & Compliance, DevOps
Blog

NASA's 10 Rules for Developing Safety-Critical Code

NASA Jet Propulsion Laboratory’s Laboratory for Reliable Software developed a set of code guidelines for developing safety-critical code. The NASA power of 10 rules are intended to eliminate C coding practices that make it difficult to review or properly analyze with static analysis tools.
Security & Compliance, Software Quality
Blog

With AI Writing Code, Will AI Replace Software Engineers?

Will AI replace software engineers? Even with AI writing code, AI won’t replace programmers overnight. But it will impact the future of software development. Learn how.
Software Quality, AI
Blog

What Is Static Analysis? Static Analysis Tools + Static Code Analyzers Overview

What is static analysis? Static analysis is best described as a debugging method, typically used early in development. Find out how it differs from dynamic analysis, benefits and limitations of static analysis — and when you should use it, as well as the best static code analysis tools and source code analysis tools.
Software Quality, Security & Compliance
Blog

Do Free Static Analysis Tools Actually Work?

Which static analysis tool is right for you? There are many options available, including free and community versions, as well as open-source and paid versions of free static code analyzers. But do free static analysis tools actually work? In this blog, we discuss the benefits and limitations of free static analysis tools.
Software Quality