Linux Foundation takes steps to make open-source software safer

From ZDNet:

False Positive Free Testing: Pascal Cuoq, chief scientist and co-founder of TrustInSoft, has received a grant to build an open source TIS Interpreter. This program will be built from TIS Analyzer, a commercial software analysis tool based on Frama-C. Frama-C is a debugger that works by interpreting C programs statement by statement from beginning to end. It verifies with each statement whether the tested program can invoke undefined behavior.

Historically, TIS Analyzer and other programs that use Frama-C can produce false positives. With this new program the goal is to develop a methodology that detects bugs without false positives. Thus, any bug that is reported will be a real bug.


read full press release.