NASA should hire better coders. Who will hard code 12 in code? Although CodeQL is great and essential, but a few firing needs to be done by nasa, not the developers, but the HR and who are incompetent in finding proper programmers with minimal skills. Also the whole system of “delivery”, task management, “Definition of Done”, is broken. You can find 30, or 30,000 bugs using a great tool like CodeQL. But the bugs can be bottomless pit. This means the project was built with bug and built “on” bugs. Also, sorry NASA, is not a brand name. Nasa is the ultimate model of failure. Nasa now is not Nada in 60s. It can never be.
CodeQL is free for open source and you can benefit from the continuously growing query set contributed by GitHub, by the community and by top security teams like NASA’s.
Such a great intro to CodeQL!
5:11
@GitHub Can you also provide database that you used for the demo query... at least the instructions we can use to create the database.
18:00 Start of Demo
NASA should hire better coders. Who will hard code 12 in code? Although CodeQL is great and essential, but a few firing needs to be done by nasa, not the developers, but the HR and who are incompetent in finding proper programmers with minimal skills. Also the whole system of “delivery”, task management, “Definition of Done”, is broken. You can find 30, or 30,000 bugs using a great tool like CodeQL. But the bugs can be bottomless pit. This means the project was built with bug and built “on” bugs. Also, sorry NASA, is not a brand name. Nasa is the ultimate model of failure. Nasa now is not Nada in 60s. It can never be.
TL;DR?
CodeQL is free for open source and you can benefit from the continuously growing query set contributed by GitHub, by the community and by top security teams like NASA’s.
สวัสดีครับ
Hi