MAIN SCAN LADDER FAQ AMANDA CHART
ABOUT SCAN    RUNG 2 - 36 Projects SAMBA CHART
FAQ    RUNG 1 - 127 Projects  
DEVELOPER FAQ    RUNG 0 - 173 Projects
ALL PROJECTS POLICY STATEMENT
 

ACCELERATING OPEN SOURCE QUALITY

In collaboration with Stanford University, Coverity is establishing a new baseline for software quality and security in open source. Under a contract with the Department of Homeland Security, we apply the latest innovations in automated defect detection to uncover some of the most critical types of bugs found in software.
     
       TOTAL NUMBER OF DEFECTS FIXED (SINCE 03/06/2006):  
  11,303  
     

August 21, 2009: David Maxwell Joins Open Source Licensing Debate with Eclipse Foundation and Alfresco on August 31st.

Coverity open source strategist David Maxwell will debate the merits of popular and often competing open source licenses with leading open source advocates Mike Milinkovich of the Eclipse Foundation and Matt Asay of Alfresco. To register for the free broadcast of the debate or to find out more information about the August 31st event, visit www.fosslc.org.

July 24, 2009: David Maxwell speaking at OSCON 2009

David Maxwell will be presenting at OSCON, at 11:35am, on Friday July 24th, in Meeting Room B1/B4. He will be discussing the Scan Architecture Library and the upcoming 2009 Open Source Report.





July 20, 2009: Recent Linux 0day defect caught by Coverity Prevent months in advance.

The Linux developers have been doing preventative maintenance using the Coverity Scan for some time. There are hundreds of issues that have been fixed in Linux as a result of being identified in the Scan, and some of those would have provided other avenues for today's 0day exploit as well. We're glad to see those fixed, and know that they aren't still available to be used in exploits.

July 14, 2009: Frank Kardel: Being "On-time" with Open Source Security, Part 2.

In Part 2 of our Q&A with Frank Kardel, we find out how the NTP community handles code security and dive into the long-fought debate over the merits of opens source vs. proprietary software. Beyond that, Kardel addresses where the two can potentially learn from each other to improve software security.



See the Rung1 and Rung2 pages for the current status of the active C and C++ projects on Scan.

If you have any questions or would like to suggest additional projects to be added, please email scan-admin@coverity.com

 
     
  “COVERITY'S STATIC SOURCE CODE ANALYSIS HAS PROVEN TO BE AN EFFECTIVE STEP TOWARDS FURTHERING THE QUALITY AND SECURITY OF LINUX.”  
     
     
  ANDREW MORTON,
LEAD KERNEL MAINTAINER 		  
     
     NEWS
 
  Coverity releases Open Source Report 2008, an in-depth study of almost 10 billion lines of analyzed code.  
 
 
 
  Rung 2: Coverity Venture with U.S. Department of Homeland Security Resolves Quality Issues and Potential Security Vulnerabilities in 11 Major Open-Source Projects

 
 
 
  Open MPI Project Partners with Coverity to Accelerate Advanced Computing Research  
 
 
  Scan now open to Java projects

 
 
 
  Scan Expanded with Graphics Software at Libre Graphics Meeting  
 
 
  Scan Expanded to 150 projects on its anniversary

  
 
 
  Happy First Birthday, Scan  
 
 
  Coverity Names David Maxwell as Open Source Strategist

  
 
 
  Coverity detects a security hole in X Windows that allows any user with a login to gain root privileges  
 
 
  Amanda releases major version (2.5) of the popular backup and recovery software with milestone of 0 Coverity defects  
 
 
  Scan.coverity.com results in over 1000 patches to projects in the first few weeks  
 
 
  internet.com logo
Coverity Study Ranks LAMP Code Quality		  
 
 
  eweek logo
DHS Funds Open-Source Security Project		  
 

 
©2007 COVERITY INCORPORATED | PRIVACY POLICY