Security News > 2020 > January > Microsoft Introduces Free Source Code Analyzer
Microsoft this week announced a new source code analyzer designed to identify interesting characteristics of code.
Called Microsoft Application Inspector, the new tool doesn't focus on discovering poor programming practices in the analyzed code.
The need for such a source code analyzer, the tech giant says, is rooted in the broad use of multiple components when building an application, including proprietary and open source code.
Although code reuse brings a great deal of benefits, such as faster time-to-market, quality, and interoperability, it also increases risks and comes with the cost of hidden complexity, Microsoft explains.
With the new tool, key changes in a component's feature set over time can be identified, as well as increased attack surface or the introduction of malicious code.