Stumped for a way to evaluate programmes that purport to find bugs in other software, US researchers have created a programme that adds thousands of bugs to other software. LAVA (Large-scale Automated Vulnerability Addition) is the result, a technique of intentionally adding vulnerabilities to a program’s source code, which has revealed that “many popular bug …