Forgot your password?
typodupeerror
Programming

+ - Do Static Source Code Analysis Tools Really Work?

Submitted by jlunavtgrad
jlunavtgrad (1291942) writes "I recently attended an embedded engineering conference and was surprised at how many vendors were selling tools to analyze source code and scan for bugs, without ever running the code. These static software analysis tools claim they can catch NULL pointer dereferences, buffer overflow vulnerabilities, race conditions and memory leaks. Ive heard of Lint and its limitations, but it seems that this newer generation of tools could change the face of software development. Or, could this be just another trend? Has anyone in the Slashdot community used similar tools on their code? What kind of changes did the tools bring about in your testing cycle? And most importantly, did the results justify the expense?"
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Do Static Source Code Analysis Tools Really Work?

Comments Filter:

An optimist believes we live in the best world possible; a pessimist fears this is true.

Working...