Applying any additional form of static analysis will find new bugs. Writing a new fuzzer is equally effective! https://googleprojectzero.blogspot.co.uk/2017/09/the-great-dom-fuzz-off-of-2017.html?m=1
Related Posts
I've been building an 'extract function' refactor feature. It's surprisingly nuanced.
Where do you put the extracted function? Once you've done the static analysis, what order do you use for the parameters?
Delighted to see that TOML has released a new version! TOML is overall a great standard but I understand they had limited people with the power to cut a new release.
https://github.com/toml-lang/toml/releases/tag/1.1.0
When writing long-lived programs (daemons etc) in Rust, I find myself asking *where* I should put data.
In a GC'd language it's just "I have a string" but Rust forces me to find somewhere to put it.
You do get a performance benefit for this work though.