We took part in the Positive Hack Days Forum 2015 on practice security. Andrey Karpov gave a presentation on "200 Open Source Projects Later: Source Code Static Analysis Experience"
Positive Hack Days is a unique international event. It is the only event which brings together the elite of the hackers' world, leaders of the information security industry and representatives of the Internet community to cooperate in addressing burning information security issues. PHDays considers many different preferences of the entire information community and covers the most topical issues related to information security.
The PVS-Studio analyzer is a methodology of detecting errors in program code. However, error is not an incorrect work of the program but also a potential vulnerability. Everything depends on perspectives you look at this errors.
That is why we took part in this forum and tried to demonstrate how often programmers make mistakes or make it vulnerable without any suspicions. The report is based on checking more than 200 projects experience. We were finding various defects with the help of PVS-Studio.
Here we suggest you to acquaint with our report: