The Software Health/Risk Measurement service measures the quality of and risks in one or more applications at a system level and against all common international standards and best practices, such as ISO 25010, OWASP, CISQ, NIST, OMG, etc. We use the global leading technology CAST Application Intelligence Platform.
The service differs from standard developer tools in several areas. Not only many more technologies are supported and more rules, standards and best practices are being measured, also the measurement takes place at the system level instead of the code level. This means that, in addition to the analysis at a code level, the architecture is also measured: all calls and interfaces between layers, components and third party or open source components are included in the analysis. In practice, 8% of the critical errors are in these connections, but it takes 80% of the maintenance time to find and fix these errors.
The service provides two dashboards: a Health Dashboard and a Engineering Dashboard.