diplomsko delo
Gašper Bregar (Author), Robert Leskovar (Mentor), Alenka Brezavšček (Co-mentor)

Abstract

Raziskava obravnava testiranje programske opreme v procesu razvoja programske opreme s poudarkom na statičnem testiranju varnosti aplikacije. Predstavljene so najpogostejše ranljivosti spletnih aplikacij, ki so opisane v dokumentu OWASP Top 10. Prikazana je namestitev orodja za statično analizo programske kode SonarQube. S tem orodjem je analizirana zahtevna spletna aplikacija, portal, ki je namenjen dokumentiranju in izvajanju poslovnih procesov. Poročilo orodja smo natančno proučili in pripravili predloge za odpravo varnostnih ranljivosti ter napak.

Keywords

testiranje programske kode;statična analiza;SonarQube;varnostne ranljivosti;

Data

Language: Slovenian
Year of publishing:
Typology: 2.11 - Undergraduate Thesis
Organization: UM FOV - Faculty of Organizational Sciences
Publisher: [G. Bregar]
UDC: 004.4
COBISS: 84466179 Link will open in a new window
Views: 318
Downloads: 10
Average score: 0 (0 votes)
Metadata: JSON JSON-RDF JSON-LD TURTLE N-TRIPLES XML RDFA MICRODATA DC-XML DC-RDF RDF

Other data

Secondary language: English
Secondary title: Analyzing source code with sonarqube
Secondary abstract: The research addresses software testing in the software development process with an emphasis on static application security testing. The most common vulnerabilities of web applications described in the OWASP Top 10 document are presented. The installation of the SonarQube - static code analysis tool is described. With this tool a complex web application, a portal for documenting and executing business processes was analysed. The tools report was carefully examined, and proposals were prepared to address security vulnerabilities and bugs.
Secondary keywords: Računalniško programiranje;Univerzitetna in visokošolska dela;
Type (COBISS): Bachelor thesis/paper
Thesis comment: Univ. v Mariboru, Fak. za organizacijske vede
Pages: VI, 63 f.
ID: 13051086