Code Quality

Poor code quality increases the risk of security vulnerabilities. This is because poor code quality makes it harder to understand the code and to find security vulnerabilities. Poor code quality also makes it harder to fix security vulnerabilities once they are found.

Examples

• Memory leaks
  • Memory leaks can be used to exhaust the memory of a system and to cause a denial of service.
• Unreleased resources
  • Unreleased resources can be used to exhaust the resources of a system and to cause a denial of service.
• Deprecated functions
  • Deprecated functions are often removed in future versions of the programming language. This can lead to vulnerabilities if the deprecated function is used in a security relevant context.