Michael Howard's blog post about SAL(Standard Annotation Language) and how you can improve security by annotating your function declarations. There's some seriously cool stuff here that could really save you some major headaches.
Source Analysis is similar in many ways to Microsoft Code Analysis (specifically FxCop), but there are some important distinctions. FxCop performs its analysis on compiled binaries, while Source Analysis analyzes the source code directly.