Category: Featured


Flexnet Code Insight 2018 R1 is Here!


FlexNet Code Insight

Better integration into the build cycle, better Enterprise IT integration and better analytics and usability. But there’s more. Have a look at the release highlights: Updated analytics and improved usability Search company wide open source inventory using a combination of relevant search criteria. This release also includes a new report that analyses OSS security and… Read more »



Emenda Docker Repository Available


docker

Docker is becoming more and more popular in enterprise level organisations. Continuing our work on Klocwork Static Analysis with Docker (You can see that here) we’ve started building our own docker repository. Currently this repository gives you Dockerfiles for the Klocwork Server (static analysis tools for C/C++, Java, C# for quality and security) to help you… Read more »



High Integrity C++ Klocwork Taxonomy released


Initially published in 2003, High Integrity C++ (HIC++) is one of the longest established coding standards for C++. It consists of rules that are actively maintained to improve maintenance, portability, readability, and safety of code especially for safety-critical applications. Emenda has developed a taxonomy using existing Klocwork checkers for the latest version of HIC++ (Version 4.0)… Read more »



Creating Klocwork Metrics Reports using Custom Metrics


In this article, we will discuss how you can create Klocwork Metric Reports based on custom metrics. The end result is very similar to our article on creating Klocwork Metric Reports using the built-in Klocwork metrics. However, this article focuses on creating reports based on custom metrics that are NOT computed by a Klocwork analysis. Therefore,… Read more »



Creating Klocwork Metrics Reports using Built-in Metrics


What are Klocwork Metrics Reports? In this article, we will go through the steps necessary to use Klocwork’s powerful built-in metrics analysis to produce interactive reports that will let you quickly spot code that needs refactoring. Here is an example of a report based on methods exceeding a cyclomatic complexity value of 20. If you… Read more »



Enterprise-level Static Analysis within QT Creator


Static Analysis within QT Creator Up until now, developers using the popular QT Creator IDE have had no easy way to statically analyse their code on an enterprise-level and get instant, within-IDE feedback. We are proud to announce that with the introduction of Emenda’s Klocwork QT Creator plugin, that has changed. QT Creator users can… Read more »



Klocwork NASA Power of Ten Taxonomy released


The Power of 10 Rules were created in 2006 by the NASA/JPL Laboratory for Reliable Software. The rules are intended to eliminate certain C coding practices which make code difficult to review or statically analyse. These rules are a complement to the MISRA C guidelines and have been incorporated into the greater set of JPL coding standards. Developed by Emenda, the Klocwork NASA Power of… Read more »



Using Klocwork with Docker


Containing Klocwork Builds with Docker There are a number of options when looking at managing Klocwork build machines for multiple environments and tool chains. The original solution involved providing each environment with dedicated hardware. Then the ability became available to host multiple operating systems concurrently on the same hardware using virtual machines. The next step… Read more »



The Klocwork API and Dashing Dashboards


What is Dashing and Why is it Great? There are many ways one can take advantage of the flexibility and power of the Klocwork API. Using Dashing, a popular open-source dashboard framework, you can make beautiful (dare I say ‘dashing’) dashboards that can give both a high level and detailed overview of all your Klocwork… Read more »



Security Innovation – Centre of Excellence (Automotive)


Security Innovation Logo

Security Innovation’s six Centres of Excellence (CoE’s) serve as the nerve centre for ongoing research and knowledge dissemination on critical computing platforms, technologies, and emerging threats. They yield ongoing methodology refinement, skills progression, and custom tools development that helps us understand systemic causes that lead to vulnerable software – and fuel our innovative approaches and solutions…. Read more »