A software system for hunting down security flaws in open source software is being used to iron out flaws from Mozilla’s Firefox.
Earlier in the year, Techworld reported that Coverity, Symantec and Stanford University had been awarded a $1.24 million grant by the US Department of Homeland Security to fund the creation of a tool that could automatically scan for bugs in open source code, including ones related to security.
Now a report on Internetnews.com, claims that the "Vulnerability Discovery and Remediation, Open-Source Hardening Project" has been extended to include programs such as the Firefox browser among its list of open source projects to analyse.
The purpose of the project is to increase the stability of open source software for use in the US government. It appears that Mozilla has jumped on the opportunity.
Other open source projects believed to be coming under scrutiny from the project include Apache, BIND, Ethereal, KDE, Linux, Firefox, FreeBSD, OpenBSD, OpenSSL and MySQL.
"Firefox is the first open source project to put Coverity's software directly in the hands of its developers, allowing them to run customised analyses at will and ensure the quality of their codebase as it evolves," Coverity was quoted as saying in a statement.
Mozilla is currently in the process of beta testing the next major release of the software, version 2.0.