[Kde-imaging] [Digikam-devel] Coverty Reports traces...
Angelo Naselli
anaselli at linux.it
Tue Feb 5 10:13:14 UTC 2013
Il 05/02/2013 11:06, Gilles Caulier ha scritto:
> Note to all,
>
> I checked other static code parser over digiKam 3.0.0-RC tarball,
> especially in open source as ccpcheck,
> Clang<http://en.wikipedia.org/wiki/Clang>,
> Codan, etc... to see if i can found similar report than Coverity, and i can
> said that none can be compared to this closed source parser.
>
> http://en.wikipedia.org/wiki/List_of_tools_for_static_code_analysis
>
> Yes, using a closed source program to check open source code can be a
> strange approach, but analisys results are really good.
>
> Coverity has a Scan opensource program which is used now by all major
> project that you know, as whole Linux kernel !
>
> http://en.wikipedia.org/wiki/Coverity#Scan_.28Open_Source.29
>
> http://scan.coverity.com/all-projects.html
>
> so why not to use it too...
>
> Note : I plan to buy a Coverity licence at work to parse all old code of
> project managed in my office (where a lots of developers are left). I have
> seen that Coverity is used in high level and critical process, as Nuclear
> plan, Research center as CERN (to found Boson stuff), Bank, etc... It's
> serious parser/analyser. And i can confirm that reports are sometimes very
> instructive to found real bugs...
Some rules can be also checked by compiler for instance -Weffc++ etc...
Angelo
More information about the Kde-imaging
mailing list