It’s easy to overlook the occasional software bugs and glitches, but some of the most negligible software errors could result in substantial financial costs if left unfixed. Case in point, a software bug in self-driving cars made them automatically brake after falsely detecting emergencies. This

The story of iCR finding the nastiest injection bugs Munawar Hafiz, CEO of OpenRefactory writes this blog post. I was scheduled to give a talk at JavaOne on Intelligent Code Repair (iCR) being able to find the LDAP injection vulnerability aka Log4Shell in the vulnerable

Blog entry written by Dr. Munawar Hafiz, CEO of OpenRefactory Inc. This is a long and winding story with a set of lessons in the end. There is a TL;DR in the end for the restless, but the others are encouraged to follow along. OpenRefactory

**Image courtesy of Cyber Kendra) Open source libraries lay the foundations for modern applications. Polluting the libraries opens up opportunities to create security backdoors at a massive scale. There have been several recent incidents to pollute open source repositories. Here is a story from last

When I was a kid, I found it fun to create “art” using a Paint by Numbers kit. Maybe you also played with it as well. Paint by numbers was a way to take a person with minimal skill (that would be me) and have

Hi. My name is Charlie and I am an Engineer. I have been an Engineer all of my life. I have written thousands of lines of code in dozens of languages, some of which you have never heard of. I have worked with and managed