DryRun Security, the industry’s first AI-native, code security intelligence company, has completed its first year out of stealth with strong corporate momentum.

Writing clean, bug-free code is a point of pride for any developer. For decades, tools that measure code quality have been a staple of the software development lifecycle, helping teams eliminate bugs, ...

Abstract: Static code analysis techniques examine programs without actually executing them. The main benefits lie in improving software quality by detecting problematic code constructs and potential ...

Code agents are AI systems that can generate high-quality code and work smoothly with code interpreters. These capabilities help streamline complex software development workflows, which has led to ...

This engineering experience paper details the application of design, development, and performance testing to an automated program repair tool we built that repairs C/C++ code. Static analysis (SA) ...

If there's anything that gives a seasoned application security (AppSec) professional indigestion these days, it's the thought of AI-assisted coding layered on top of an already insecure development ...

The Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the Department of Energy's Sandia National Laboratories, has released Thorium, an automated malware and forensic ...

Cyber defenders will now have access to a new free malware analysis platform thanks to the Cybersecurity and Infrastructure Security Agency (CISA) and the Department of Energy’s Sandia National ...

The Microsoft C++ Code Analysis tool has been updated to provide better tracking, justification, and overall management of warning suppressions. These improvements lead to a more maintainable and ...