From: William S F. <ws...@fu...> - 2007-07-19 21:34:38
|
I've got Coverity (http://scan.coverity.com) to add SWIG to their list of open source projects over which they will run their static analysis tool for free. The results it produces look quite impressive in that it finds real bugs with a low false positive hit rate. Right now it has found 57 potential bugs. It works somewhat better than the classic lint tool and has a pretty good user interface for displaying the code and analysing problems (as a web page). Any SWIG developers who are interested in using this tool on SWIG, please get in touch with me and I'll get Coverity to open a user account. I'd encourage everyone who is interested in static analysis tools and/or SWIG to give it a try - there is nothing to lose. Hopefully you can knock a few bugs on the head in the process. If we use the tool, I guess SWIG will also get some publicity - it will appear on the list of open source projects at http://scan.coverity.com/rung1.html alongside the likes of apache and firefox and other great open source/free projects. I'd like to get the count down to zero, it can't be that hard to sort out 57 coding errors; I fixed 3 within 10 minutes the other night, so it actually stands at 54. William |
From: William S F. <ws...@fu...> - 2012-11-15 06:56:05
|
I've got the Coverity static code analysis up and running again. It is now easy to view the results of the analysis and run the tools after making changes. It does require a login though, so if anyone is interested in seeing this tool in action and fix a SWIG coding bug at the same time, please contact me. We've got a minimal set of checkers enabled at the moment. A full list of possible checkers are here: http://scan5.coverity.com:8080/docs/en/cov_checker_ref.html. I've just fixed a pile of the latest major problems it found but there are 25 issues still outstanding. They are mostly fairly simple to analyse and fix. If you're interested in code static analysis, it is a good opportunity to get familiar with this particular tool - I think it is quite impressive as false positives are relatively low. Getting started info including a short video: http://scan.coverity.com/start/. Full docs: http://scan5.coverity.com:8080/docs/en/index.html. William |