Dec 2, 2019 · Microsoft Security Code Analysis (MSCA) enables you to integrate these principles and practices into your CI/CD pipeline when using Azure DevOps (Services only, not available …

TSLint is an extensible static analysis tool that checks TypeScript code for readability, maintainability, and functionality errors. It is widely supported across modern editors and build …

Aug 7, 2024 · Microsoft Security DevOps is a command line application that integrates static analysis tools into the development lifecycle. Microsoft Security DevOps installs, configures, …

Know the quality of your code at all times. Detect bugs. Detect ‘code smells’. Explore more execution paths. Discover cognitive complexity issues. Find security vulnerabilities. Review …

May 5, 2020 · Someone asked me recently what tools I personally use to analyzer code for .NET Core and Azure. Here are the freely available, and low-hanging fruit options for you. We can …

Jul 11, 2021 · This article explains how to set up static code analysis for infrastructure as code using Azure DevOps pipelines and Prisma cloud. Static (non-running) code analysis is …

May 3, 2021 · Today I figured out how to add build validation policies to pull requests. We'd like to also add some typical static code analysis tools, but I'm not sure which tools are standard and …

Apr 26, 2021 · In this post I am covering Static Code Analyses using three tools, these are: Azure DevOps - a CI/CD platform provided by Microsoft for developers. We will use this to store the …

Dec 11, 2022 · There are multiple different ways we can use Security Code Scan in an Azure DevOps pipeline, so let’s check out three options. I’ll be using the …

Mar 16, 2025 · Azure DevOps supports a variety of static analysis tools, each with its own strengths. Some popular options include: SonarQube: A comprehensive tool for continuous …