Result description
The Static Code Analysis Module is a tool designed to analyze software source code without executing it, in order to identify potential vulnerabilities, bugs, code quality issues, and deviations from secure coding standards. It enhances early-stage detection of security flaws, improving overall software reliability and maintainability. Unlike conventional tools, this module integrates advanced machine learning and deep learning techniques to significantly reduce false positives and deliver more accurate results. It generates a Static Supply Chain Component Guarantee (SSCG)—a structured, verifiable report that certifies the security posture of software components, ensuring transparency and trust throughout the supply chain.
Addressing target audiences and expressing needs
- Marketing Mentoring or Coaching
- Financing Expertise
- Legal / IPR advise
Partners in related fields to strengthen and expand the impact of our research.
- Other Actors who can help us fulfil our market potential
- Research and Technology Organisations
- Academia/ Universities
R&D, Technology and Innovation aspects
The Static Code Analysis Module is currently at Technology Readiness Level (TRL) 4, with a working prototype already in place. It is expected to reach TRL 5 by the end of the project. The estimated time to market ranges from 0 to 3 years post-project, depending on further validation, industry adoption, and commercialization efforts.
Result submitted to Horizon Results Platform by DIPL. PHYS. PEER STRITZINGER GMBH
