KeePass is a free, open source, light-weight and easy-to-use password manager that allows users to manage their passwords across multiple accounts and applications in a secure way. It supports a password database that is locked with a single master key. KeePassDroid is a port of this password manager for Android. It is a popular password …
In this blog series, we will share some findings from running iCR on open source code. We ran iCR on Jenkins version jenkins-2.264 with the last commit hash of 4ff3e8d. This version had 1634 Java files and about 285 KLoC. We will be giving examples of some bugs that iCR identified. Null Pointer Dereference: …
This is an opinion piece written by Charlie Bedard, COO of OpenRefactory. Charlie reflects on SAST practices based on his years of experience. Programing languages are the “carpenter’s tools” for software developers. Just like a good carpenter would not use a chisel as a screwdriver (OK, I have done that in an “emergency”), it is …
In the nascent years of the computer industry some six decades ago, there were only a handful of machines globally and the machines took up huge rooms and consumed lots of power. Software was a brand-new discipline and it took very specialized training and patience to program the machines. Today, less than one average lifetime …
OpenRefactory reports that it has performed an analysis of a popular Open Source project: FRRouting. FR Routing is a member of the Linux Foundation. From the FR Routing Website (https://frrouting.org): “FRRouting (FRR) is an IP routing protocol suite for Linux and Unix platforms which includes protocol daemons for BGP, IS-IS, LDP, OSPF, PIM, and RIP. …
A major advancement for OpenRefactory is our Memo of Understanding with Tata Consultancy Services (TCS). The MoU creates an opportunity for OpenRefactory to partner with TCS who helps to bring our technology to the very large base of TCS’s customers. The MoU relationship was made possible thanks to the introduction of OpenRefactory to TCS by …
Everyone cares about security bugs—yet until OpenRefactory, there haven’t been tools that enable developers to resolve them really efficiently. The leading developer security tools only detect bugs; after that, developers have to fix the bugs manually. It takes a developer four hours on average to fix a bug; hard-to-detect bugs such as resource leaks may …