Klocwork Products

• Klocwork Insight Pro
• Klocwork Insight
• Klocwork Solo

Relevant Reads

FACT SHEET: Klocwork Insight

Comprehensive, enterprise-class source code analysis for mission-critical software [...]

FACT SHEET:Klocwork Solo for Java

Standalone source code analysis tools for the individual Java developer focused on mobile software or web application development [...]

WHITEPAPER:The Customer Costs of Software Quality

This report quantifies the costs of low quality software for customers and uses benchmark data to illustrate the magnitude of these costs [...]

Industry Articles

Exploring the challenges that widespread use and re-use of software in aviation manufacturing poses, and discussing best practices for ensuring software security and quality across large and complex code bases.

Getting developers to work collaboratively in teams is one of the hardest things that any IT leader has to do. Putting a framework in place to facilitate collaboration might help reduce the friction.

Software developers and testers have some new tool choices to help with agile computing issues like velocity and automation.

Tools that deliver software assurance go mainstream.

DZone interviewed Klocwork CTO, Gwyn Fisher, to get an in-depth look at Insight Pro and its static analysis engine.

The solution incorporates three new tools which will help software development organizations in streamlining the development process, and cutting down the risk of bug debt.

Klocwork is spreading out beyond the static analysis game and rolling out new software to help ensure the creation of strong code.

Version 9.0 of company's Insight Pro product features collaborative code review

Klocwork Insight Pro increases productivity for the Agile software developer

With new aircraft now being highly software dependent, software verification and integrity is becoming ever more vital. This article featured in Aerospace International looks at squashing software bugs in mission-critical code.

While C dominates as the programming language of choice for embedded development, the use of Java is definitely on the rise. Here's a round-up of the top five most common Java coding mistakes to avoid.

Explores why the ability of visualize and analyze a software system’s architecture is key to successful code reuse for military and avionics software systems developers.

Discover the value source code analysis tools bring to development organizations during touch economic times.

AnthillPro 3.7 Integrates with Popular Source Code Analysis Tools.

Developers of open source software projects should be just as concerned about security as anyone developing a proprietary app. However, the nature of the two development processes can be very different at times, and debate still rages about which is inherently more secure -- a secret code kept by a company, or a public one that all eyes can see.

Alen Zukich, director at source code analysis specialist Klocwork explores how software testing can help save lives while reducing costs in the rapidly changing medical device industry.

The JVM's promise of write once, run anywhere works most of the time. But it can also make programmers complacent about cases where the WORA promise fails, says Gwyn Fisher, CTO of Klocwork, maker of the eponymous code analysis tool.

Like it or not, economics will pull the strings in any business and, like other department, IT is affected. The next session of The Tech Herald’s look at IT and the economy involves Mike Laginski, CEO of Klocwork.

In a forthcoming tip I'll cover what developers can and should be doing to get on board with security. In this tip I'll share what quality assurance (QA) analysts, engineers and testers can do to reduce business risks in this capacity.

Spring has ushered in a spate of new product announcements targeted at quality assurance (QA) professionals and software testers.

When the Java Virtual Machine comes into play, garbage time isn’t just for basketball players.

In the eyes of Mike Weider, the correct way of doing software security testing requires getting into the mind of the hacker.

In this interview we talk with Gwyn. In specific, we talk about: The value of automated code review, The advantage of code review at the developer level, Judging the security of open source codebases, Coordinating bug resolution between distros and upstream projects, Educating users about vulnerability in the face of complacency, The changing face of computer attacks, Why isn’t everyone using code-validation tools?

Klocwork Note: Technical article by Klocwork CTO Gwyn Fisher that describes some best practices for secure coding. Article includes detailed code examples and explanations of how insecure code can be exploited by hackers.

Klocwork Note: Technical article by Klocwork CTO Gwyn Fisher that discusses the importance of enhancing software validation on e-voting systems.

When Mentor Graphics Inc. decided to switch to an agile methodology, the company needed a source code analysis tool that fit its development methodology and its complex code base. Klocwork Insight, a static analysis tool, provided the right services and conformed to agile principles.

The Tech Herald recently got a chance to talk to Gwyn Fisher of Klocwork. Fisher has over twenty years of technology experience under his belt, and is currently the CTO of Klocwork. As with all of our recent Q&A articles, The Tech Herald allows vendors to add commentary, as well as allowing them a chance to speak out. Last month, The Tech Herald held a one-on-one with Barmak Meftah of Fortify Software. After that article was posted, Gwyn took the time to cover some of the same questions and topics.

Earlier this year Klocwork released a desktop product, Klocwork Insight, bringing their automated source code analysis features to individual developers. Insight is available in both C++ and Java versions. Until now the industry has frequently made use of source code analysis after the checkin process during the system building phase of a project. Insight moves up the application of source code analysis to the build and implementation portion of the development lifecycle. Insight can be integrated in a variety of ways from the Java perspective.

Klocwork Note: Excellent case study from Klocwork customer, Lawrence Livermore Labs

Klocwork Notes: Klocwork awarded SD Times 100 for 4th consecutive year. A good article that rounds-up the major players in the software tools and application lifecycle space.

Embedded systems engineers must work smarter because faster may not be humanly possible.

MODERN civilisation depends on software, so it needs to be as reliable as possible. But software is produced by humans, who are fallible.

Your brand new sweater has a hole in it. The coffee maker you got for Christmas doesn’t power up when you plug it in.

Klocwork last week announced the debut of a new static analysis tool that aims to ensure quality and security in the code development process, both at the level of the desktop and organization wide.

Where is the best time and place to find bugs in an application? According to code analysis vendor Klocwork, the best place is the source: the developer that writes the code.

Klocwork officials on Monday announced the debut of a new static analysis tool that aims to ensure quality and security in the code development process, both at the level of the desktop and organization wide.

Where is the best time and place to find bugs in an application? According to code analysis vendor Klocwork, the best place is the source: the developer that writes the code.

Where is the best time and place to find bugs in an application? According to code analysis vendor Klocwork, the best place is the source: the developer that writes the code.

Developers, not downstream organizations, will be able to analyze code before they check it in.

In the continuing drive to address quality and security earlier in the software development lifecycle (SDLC), two thought leaders in the automated source code analysis market -- Klocwork and Ounce Labs -- are targeting new releases at the developer.

A new tool from Klocwork leverages systemwide source code analysis to help developers find bugs as they work.

Secure programming, as well as the practice of securing an enterprise's IT infrastructure, is an exercise in risk management. There is no single solution to all possible vulnerabilities, but knowing what solutions are available, their limitations, and where they fit in the spectrum of possible risk mitigation activities will put you far ahead of the pack

Developers cannot depend on old code review processes and testing tools to find all the bugs and potential vulnerabilities in today's connected devices. Modern static analysis tools, however, provide a complete system view and detect any weaknesses in the code that could lead to a malicious attack

Foiling malicious attacks where they may strike! Stomping out evil, site-bleeding bugs from the netherworld! Single-handedly lifting development teams out of harm's way! Look! Up and down the list! It's a leader! It's an influencer! It's the SD Times 100

New development products and new releases of existing ones

Améliorer la qualité et sécurité de vos développements logiciels tout en réduisant les coûts

Remember when attackers were just out for fame and glory, and application security was someone else's problem? Big targets like Microsoft and Oracle drew the fire. All enterprise IT had to do was apply patches regularly and keep a properly configured firewall.

We brought three popular static source-code analyzers into our Chicago Neohapsis Real-World Labs®: Fortify Source Code Analysis (SCA) Suite 4.0, Ounce Labs' Ounce 4.1, and Klocwork K7 7.5.

Klocwork, the company that earned InfoWorld's nod for best code analyzer solution for 2006, made a subset of its K7 analyzer engine available yesterday as an Eclipse plug-in at a discounted price.

Klocwork K7 is a robust and scalable analytical suite for C, C++, and Java, featuring excellent defect discovery and extensive tools for managing the many results. In addition, it provides superior code navigation and analysis tools. This is a comprehensive and very impressive package