| | SLO | ENG | Cookies and privacy

Bigger font | Smaller font

Show document Help

Title:Analiza programske kode z orodjem sonarqube
Authors:ID Bregar, Gašper (Author)
ID Leskovar, Robert (Mentor) More about this mentor... New window
ID Brezavšček, Alenka (Co-mentor)
Files:.pdf VS_Bregar_Gasper_2021.pdf (2,54 MB)
MD5: 510373012931745E1D89735E968FBBD4
PID: 20.500.12556/dkum/2b9b4635-1707-4252-baad-0c0398a72683
 
Language:Slovenian
Work type:Bachelor thesis/paper
Typology:2.11 - Undergraduate Thesis
Organization:FOV - Faculty of Organizational Sciences in Kranj
Abstract:Raziskava obravnava testiranje programske opreme v procesu razvoja programske opreme s poudarkom na statičnem testiranju varnosti aplikacije. Predstavljene so najpogostejše ranljivosti spletnih aplikacij, ki so opisane v dokumentu OWASP Top 10. Prikazana je namestitev orodja za statično analizo programske kode SonarQube. S tem orodjem je analizirana zahtevna spletna aplikacija, portal, ki je namenjen dokumentiranju in izvajanju poslovnih procesov. Poročilo orodja smo natančno proučili in pripravili predloge za odpravo varnostnih ranljivosti ter napak.
Keywords:testiranje programske kode, statična analiza, SonarQube, varnostne ranljivosti
Place of publishing:Kranj
Year of publishing:2021
PID:20.500.12556/DKUM-79384 New window
COBISS.SI-ID:84466179 New window
Publication date in DKUM:11.11.2021
Views:1002
Downloads:27
Metadata:XML RDF-CHPDL DC-XML DC-RDF
Categories:FOV
:
Copy citation
  
Average score:(0 votes)
Your score:Voting is allowed only for logged in users.
Share:Bookmark and Share


Hover the mouse pointer over a document title to show the abstract or click on the title to get all document metadata.

Licences

License:CC BY-NC-ND 4.0, Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International
Link:http://creativecommons.org/licenses/by-nc-nd/4.0/
Description:The most restrictive Creative Commons license. This only allows people to download and share the work for no commercial gain and for no other purposes.
Licensing start date:21.06.2021

Secondary language

Language:English
Title:Analyzing source code with sonarqube
Abstract:The research addresses software testing in the software development process with an emphasis on static application security testing. The most common vulnerabilities of web applications described in the OWASP Top 10 document are presented. The installation of the SonarQube - static code analysis tool is described. With this tool a complex web application, a portal for documenting and executing business processes was analysed. The tools report was carefully examined, and proposals were prepared to address security vulnerabilities and bugs.
Keywords:software testing, static analysis, SonarQube, security vulnerabilities


Comments

Leave comment

You must log in to leave a comment.

Comments (0)
0 - 0 / 0
 
There are no comments!

Back
Logos of partners University of Maribor University of Ljubljana University of Primorska University of Nova Gorica