Shifting QA Left: Emerging Trends in Code Quality and Security Automation

This talk discusses various advances in program analysis technology that enable a larger class of bugs to be detected earlier in software development projects (and even to be automatically fixed in some cases). It focuses particularly on recent developments that enable tight integration of program analysis tools into DevOps processes. These new techniques have been pioneered by academia and operationalized at scale (billions of lines of code / thousands of commits per day) by large tech companies such as Google and Facebook. The talk concludes with the best practices for software development organizations interesting in incorporating modern program analysis into their workflow.

Video producer: