The Future of the SBOM

Although it might seem premature to discuss the future of the software bill of materials (SBOM) before they have even gained...

What is an SBOM? A deep dive.

By now, you’ve probably heard the term software bill of materials (SBOM). It’s become the security buzzword of the year. Let’s...

Why NPATH is a Terrible Code Metric

I’m on a MISRA committee to specify a standard for code metrics (aka measures) for software quality. The committee was formed...

SAST and Unit Testing are a Perfect Match: CodeSonar and VectorCAST Integration

VectorCAST is an embedded software testing platform from Vector Informatik that supports the creation and management of test...

Automotive Software Safety and Security Still Needs Improvement

A recent blog post, “Automotive software defects”, from Phil Koopman, Carnegie Mellon professor and author of “Better Embedded...