Una nota curiosa en Quality Coding Takes A Break For The Holidays. But Why? donde examinando código detectan que la calidad (desde el punto de vista de fallos de seguridad encontrados) tiene un pico (en sentido de encontrar más fallos) hacia los meses de octubre y noviembre:
For the time period I looked at (the last 24 months), January through September is relatively flat and in line with the average flaw density. Then, there is a big bump in flaw density in October and November. Things begin to settle down once we go into December. The jump in application flaws is easy enough to spot. But what could cause this? Some of it could be seasonal. Maybe the build up to Thanksgiving has developers distracted? Are developers adjusting after the Summer break when “the living is easy” and the roads are quiet? Fall brings the extra pressure of dropping kids at school and rushing in the evenings to pick them up after sports. There is also the added pressure to produce a high volume of code to meet end of year deadlines and releases.
También da otras cifras de lo que es ‘normal’:
To do a comparison, you first need to know what normal looks like. Therefore I looked at the thousands of alpha and beta-stage applications Veracode scanned over the past couple of years. I saw an average flaw density of 24 flaws per megabyte of executable code and a median flaw density of 3 flaws per megabyte of executable code.
Curioso. Harían falta más datos, claro.