Overview
The course teaches learners about the challenges of managing large C++ projects and the limitations of traditional methods like code reviews and unit tests. It introduces tools and techniques such as DevSecOps, static analysis, dynamic analysis, and quality control platforms to maintain the quality and security of big old projects. The course covers topics like legacy code, bug hunting, security, DevOps, static vs dynamic analysis, and the use of tools like SonarQube. The intended audience for this course is C++ developers and project managers working on large projects who want to improve their project management skills and ensure the quality and security of their codebase.
Syllabus
Intro
About me
Some statistics
Legacy
What it looks like
Proven methods
Wait... what?
Hunting of the Bug
Where it leads
True story
What to do?
On security
DevOps + Security
Dynamic analysis
It's about movement
Static analysis
Code review done fast
Static vs Dynamic
SonarQube - why use it?
First run
Why and what to do
Extreme
GPL virus
Let's summarise
Taught by
NDC Conferences