Hunter Hudson/Jon Pincus - On Spot the Bug and Code Quality

Download this episode


Hunter Hudson, development manager, programmer productivity Research center, and Jon Pincus, senior researcher on Microsoft Research, sit down with Charles Torre to talk about spotting bugs and code quality issues in this three-part interview.



Available formats for this video:

Actual format may change based on video formats available and browser capability.

    The Discussion

    • User profile image
      There is a typo in the line
      var strConnection="Data Source=c:\\auth\\auth.mdb;"
      But a real bug is that when building the SQL query, the user input is not checked, so I could enter my name as "teis' DROP TABLE client": Classic mistake
    • User profile image
      I have to agree that there is a large difference between the kind of bug that simply stops the app from working (typo in data source parameter) and the kind of bug that allows the app to survive casual testing but which nevertheless leaves a large security hole.  The first kind is much easier to catch, but is much less serious in the larger sense.

    Comments closed

    Comments have been closed since this content was published more than 30 days ago, but if you'd like to send us feedback you can Contact Us.