All posts of Lorenzo

How to choose your Salesforce static analysis tool

What is static code analysis? Static code analysis tools can process application source code automatically, and help identify problems, security flaws, estimate technical debt, etc. Such tools process large amounts of code in a very scalable way and enforce checks systematically; for this reason, they can be instrumental to your technical debt management strategy. How […]

What we learnt scanning 10.2 billion lines of Salesforce code

We find one serious security problem every 39,000 lines of code; this affects, on average, 2 orgs out of 5. At Clayton, we examine tens of millions of lines of code and configuration every day, looking for security vulnerabilities and anti-patterns before they put at risk our customer’s Salesforce investments.