Posts in:

Insights

Securing software together: GitHub + Semmle

Semmle is joining the GitHub team to bring community-powered security analysis to millions of developers. Learn how GitHub and Semmle plan to secure software together here.

September 18, 2019

Bridging the gap between developers and security teams

How can we explain the gap between the high security objectives and the low level of secure coding practices in development teams? And what should an organization do to bridge this gap in practice?

September 17, 2019

How to motivate developers to care about code quality

Use the LGTM analysis board as a source of motivation for controlling the technical debt, and increasing your code quality.

August 29, 2019

Insecure Deserialization: Finding Java Vulnerabilities with QL

LGTM code quality: Tools to measure quality of your source code

Techtonica and Semmle: How a Facebook Fizz bug bounty is benefiting a non-profit

The OODA Loops Theory: Tame Your Fragile Code

Github Security Features, Bluekeep, Nginx, and Security News - Semmle on Security

Code as Data: Advanced Techniques for Code Analysis

Open Security: The path to securing Open Source Software

Open source software (OSS) is both widely adopted but also comes with security risks. Learn how four projects are advancing an open security approach.

The Community is Our Security Research Team

Today we welcome the first contributions from Microsoft to the open-source repository of security analyses managed by Semmle.

August 13, 2018

We Owe the World Secure Software

August 13, 2018

How LGTM automatically builds your C/C++ projects

Stack buffer overflow in Qualcomm MSM 4.4 - Finding bugs with QL

January 24, 2018

Lodash vs Underscore: Dash of the titans

October 26, 2017

Restlet XXE vulnerability (CVE-2017-14949)

October 17, 2017

Interning at Semmle: Getting Acquainted with QL

September 28, 2017

Open Source vs Proprietary Software: An Analysis Of Code Quality

February 14, 2017

Browse all tags