The code quality pyramid

Reversing UK mobile rail tickets

Ebook: Learning Blazor

SAST: how code analysis tools look for security flaws

Issue #330



Sorry for missing yesterday's issue, had some technical issues that needed resolving. I did come across this interesting repo that documents a bunch of falsehoods most programmers believe about certain topics. Might be worth checking out to see if you're making any incorrect assumptions about your own work.
Anyway, here's the issue!


Today's Sponsor: Telerik UI for Blazor

Telerik UI for Blazor delivers components to meet all app requirements for data handling, performance, UX, design, accessibility, and so much more. Download the free trial.


The code quality pyramid

Published: 27 January 2023
Tags: management, philosophy

Fabian Zeindl discusses different ways to improve the quality of software systems. Fabian groups different qualities into a pyramid, with lower parts of the pyramid supporting the parts further up.
Some highlights:

  • Keep the build graph simple by grouping related tasks together and eliminating unnecessary work
  • Use a caching mechanism to avoid rebuilding the same thing multiple times
  • Avoid installing dependencies multiple times by using a dependency manager


Reversing UK mobile rail tickets

Published: 31 January 2023
Tags: reverse engineering

Eta describes how mobile rail tickets work in the UK and her attempt to reverse engineer them.
Some highlights:

  • Mobile tickets are just an Aztec barcode, either displayed inside an app or on a PDF you can print out
  • The data in the barcode is encrypted in some way
  • Not really possible to copy the tickets


Ebook: Learning Blazor

Published: 13 October 2022
Tags: c#, dotnet, sponsored, web, web assembly

Progress' Telerik is providing a free ebook as a practical guide that'll help you learn how to use Blazor WebAssembly to develop web experiences.
Some highlights:

  • Explains how WebAssembly enables many non-JavaScript-based programming languages to run on the client browser
  • Strategies for bidirectional JavaScript interop
  • Covers component data binding, hierarchical event-driven communications, in-memory state management, and local storage


SAST: how code analysis tools look for security flaws

Published: 27 January 2023
Tags: infosec

Sergey Vasiliev explains how Static Application Security Testing (SAST) solutions find security issues in code.
Some highlights:

  • SAST tools look for potential vulnerabilities in source code without executing it
  • Syntax trees are used as a convenient and structured representation of the code
  • "The sooner a vulnerability is found, the easier and cheaper it is to fix"


How did I do?

* Amazing
* Articles not relevant to me
* Articles were relevant, but badly written
* Summaries told me everything I wanted to know
* I like turtles

Want to help?

Thank you for reading! If you enjoy the newsletter, I would really appreciate you helping me spread the word by forwarding this to your friends and colleagues or sharing it on social media! Get cool stuff for your referrals using your link

Your referrals:

If you want to discuss or comment on this issue, head on over to this page at A Byte of Coding. You can also subscribe there if you're new!

Have comments or feedback? Just reply to this email or hit me up on Twitter @AByteOfCoding.

Email landed in your promotions tab? Please move it over to primary so you don't miss the latest issues in the future.
Thanks for your Support! 

Big thanks to all of the Patreon supports and company sponsors. If you want to support the newsletter you can checkout the Patreon page. It's not necessary, but it lets me know that I'm doing a good job and that you're finding value in the content.

Stats (updated daily)

Sent: 3040

Opens: 1469

Clicks: 470

Link Clicks Clicks % Unique Clicks Unique Clicks %
The code quality pyramid 144 61.54% 156 62.90
Reversing UK mobile rail tickets 50 21.37% 53 21.37
Ebook: Learning Blazor 40 17.09% 39 15.73
SAST: how code analysis tools look for security flaws Awaiting Update Awaiting Update Awaiting Update Awaiting Update


Back to Issues