BLOG

Software Bill of Materials Required by 2021 Cyber Security Executive Order

A new Presidential Executive Order was just signed highlighting the need to enhance the software supply chain as one of the measures for improving the nation’s cybersecurity. With too...

GrammaTech Releases CodeSonar 6.0 with Improved Analysis, Visualization, Reporting and Unified Java Analysis

Over the years we have seen our customers “shifting left” to take advantage of building in security versus testing for security later in the lifecycle. As advanced SAST tools such as...

Multi-language SAST and SCA for Android Platforms and Applications

Android is, for most people, a mobile operating system for their phone or tablet. In fact, it’s an extremely successful open source platform in general. It’s common in automobile...

GrammaTech Congratulates Long Time Customer, Jet Propulsion Laboratory, on their Successful Landing of Perseverance Rover

On Demand Webinar featuring Solid Sands | Safety and Security Critical Software: Start with the End in Mind

  Software development is hard work. Developing C or C++ software that has to be safe and secure is even more difficult. How do you ensure that your end-product behaves the way...

On Demand Webinar featuring Forrester | Binaries, the Hidden Side of Software Composition Analysis (SCA)

    Many SCA solutions require source code for their bill-of-materials and vulnerability analysis. However, source code is not always available for much of the supply chain you...

2020: Looking Back on GrammaTech's Year

Surely 2020 will go down in the history books as an exceptional year to put it mildly. Despite the huge impact of the COVID-19 pandemic on the world, it certainly impacted us and our...

Securing the Software Supply Chain Goes Beyond Application Development

In July 2017, one of the biggest data breaches was due to an insecure and out of date web application platform. This breach would have been prevented if the Apache Struts platform the...

Webinar Recording - A Demonstration by CS Group USA on CodeSonar and LEAFS to Reduce Cost and Time in Software Development

      Strong software development teams have a well-defined process and are supported by a strong tooling environment. CS Group USA and GrammaTech highlight in...

SWAP Detector: Preventing API Errors from Swapped Arguments

Third-party application programming interfaces (APIs), libraries, and frameworks are a fact for modern software developers. They are usually complex, rapidly evolving, and sometimes...

Alan Shimel Interviews GrammaTech on TechStrong TV

    Interested in what the teams at GrammaTech have been working on? Alan Shimel at TechStrong.tv sat down with Mark Hermeling on November 19 in this...

Webinar Recording - Achieving Industrial Functional Safety with IAR and GrammaTech

      This webinar reviews current functional safety standards including IEC61508, EN50128, ISO26262 and how to execute towards necessary safety...

What the Building In Security Maturity Model (BSIMM) Says About the Role of SAST and SCA

The BSIMM is an annual study of the real-world software security initiatives – “SSIs” in the report - across the software industry drawing from data and experience from 130...

Latest Version of CodeSonar Improves on C++ Analysis, MISRA Support; Introduces Subcommands for DevSecOps and More

The latest version of GrammaTech CodeSonar, Version 5.4, continues our commitment to being the go-to provider for static application security testing (SAST) and the static analysis tool...

[Video] Functional Safety Certification with Exida and GrammaTech

At GrammaTech, we specialize in helping customers improve their software development processes. Many of our customers work with software that has to be certified to certain levels of...

GrammaTech Featured in Cyber Security Forum Initiative (CSFI) Podcast

GrammaTech is a new gold sponsor of the Cyber Security Forum Initiative (CSFI), a non-profit organization with a mission “to provide Cyber Warfare awareness, guidance, and security...

Staying on the Rails: Piper Networks + CodeSonar Case Study

Piper Networks is an innovative IT solutions provider and systems integrator specializing in the transportation industry. Founded in 2011, Piper helps transit...

Webinar Recording - Tools to Perform a Security Review on Unknown Code with Imagix

      Performing a deep security review on third party code is hard. You typically receive a bunch of source code, no design documents,...

GrammaTech Named Top 20 Most Promising Automotive Solution Provider

In the most recent issue of CIO Review, GrammaTech was named one of the Top 20 Most Promising Automotive Solution Providers. The list of companies was selected by a panel of experts and...