I'd be curious to know where Delphi compilers fall on the scale.
I'd be curious to know where Delphi compilers fall on the scale.
Originally shared by Greg Kroah-Hartman
This is a great step forward, sure it might not perfect, and static code analysis might be better if you have access to the code, but you can learn a lot from binaries and it's really revealingly the choice of build tools that a project uses as an indicator of the "smell".
https://theintercept.com/2016/07/29/a-famed-hacker-is-grading-thousands-of-programs-and-may-revolutionize-software-in-the-process/
Originally shared by Greg Kroah-Hartman
This is a great step forward, sure it might not perfect, and static code analysis might be better if you have access to the code, but you can learn a lot from binaries and it's really revealingly the choice of build tools that a project uses as an indicator of the "smell".
https://theintercept.com/2016/07/29/a-famed-hacker-is-grading-thousands-of-programs-and-may-revolutionize-software-in-the-process/
My own experience suggests there are many errors to find. The more the market volume -- users, not necessarily revenue -- the less reliable the code, in my experience. And the growing tendency to push updates, without user approval, is extremely offensive. It means the ground keeps shifting, and I can't rely today on how thigs worked yesterday.
ReplyDeleteSounds like Yet Another Certification, aka Red tape.
ReplyDeleteLike all certifications, it can either end up improving things, or just muddying the waters, depending on how actively and how seriously it is being implemented, how serious the flaws it finds, how many false positives etc.
That said the overall tone of the article triggers my "snake oil salesman" alarm bells more than it inspires confidence :)