When you begin your process to develop a new application or an enhancement to an existing application, one of the areas that is often at the bottom of the list is security. Why is this? Well, security is hard. Security is time consuming. Security is resource dependent. So, this is where ARCAD CodeChecker can step in. CodeChecker is designed to slide into your current process even if you don’t currently use the ARCAD for DevOps suite of tools.
As you continue to produce new lines of code, new interfaces, or new databases, your developers follow a standard for coding quality. This is usually a combination of industry-standard rules and some specific rules for your business. As most developers can attest, they are always under a deadline, and when time becomes a factor, steps can be skipped. Vulnerabilities can be left undiscovered, even if they are as simple as a copyright line in a piece of code. This is where you hope and trust that peer review will catch the errors. What happens when your developer must peer review their own code? In any case, whoever is tasked with a manual review is also under time pressure and liable to human error. Again, this is where ARCAD CodeChecker can step in.
Are you wondering how to bring your new developer up to speed and ready to use the policies and processes set forth in your code development guidelines? Do you wonder how secure is your older RPG or COBOL code? Or how solid is your SQL security, does it guard against injections?
Now that you have seen some of the problems that are out there, or even the problems you may not even know you have, let’s review what ARCAD CodeChecker can really do for you.
Figure 1 – Finding those Bugs