5 min read 21 Jan 2020 by Simon Scannell
In-depth analysis of our latest vulnerability findings and best practices for secure development.
12 min read 17 Dec 2019 by Johannes Dahse
Static code analysis is a powerful tool for automated security testing of applications. The more an analysis is tailored to your programming language and individual code, the more efficient and accurate are the results. In the second part of our fine-tuning guide, we dive deeper into our analysis approach and how to fully customize it with 5 advanced settings.
10 min read 10 Dec 2019 by Johannes Dahse
A good SAST solution works out-of-the-box for any code base. But there are configurations that help to squeeze the most out of your code analysis. These configurations depend on the logic and environment of your application, as well as on your personal expectations of the scan results. In this blog post, we look at 5 basic options to fine-tune static analysis to your needs.
1 min read 28 Nov 2019 by Johannes Dahse
2 min read 26 Nov 2019 by Malena Ebert
As part of our latest release RIPS 3.3, we published our new integration for GitHub. It can be used as a security gateway to automatically check your application builds for the existence of security vulnerabilities and security-related code quality issues. See how RIPS can automatically protect your production server from new security bugs.