Start of main content
How to test static analyzers
Static analyzers (or SAST solutions) help find errors and vulnerabilities in various projects. However, these tools need to be tested too.
What are the specifics of testing the analyzer? How to search for errors in tools designed to find errors? How can tests teach the analyzer to search for theoretical problems and real vulnerabilities?
The talk will answer these questions.