SCL - Web Analytics, PPC, Application Monitoring, Software Quality

Static Analysis Resources

Static Source Code Analysis

Defining Static Source Code Analysis

Static source code analysis refers to the analysis of software that is performed without executing the application under test. This contrasts with run time or dynamic analysis where the analysis is performed on a executing application. In a static source code analysis the analysis is performed on the source code or object code used to build the application.
Static and run time analyses each have their respective merits. A run time analysis will allow you to isolate behaviour that can only be exhibited at runtime, for example where an application takes some form of real time feed or interrupt. However, to perform a run time analysis will require the execution of the application and invariably the creation and maintenance of a test data set to cover the use cases required.

Read more...
 

CodeSonar Overview Whitepaper

An Overview of CodeSonar Static Analysis Technology

CodeSonar Enterprise is GrammaTech’s static analysis tool for finding flaws in C/C++ programs. It allows you to find serious bugs in your programs at compile time, without having to run your code. Its whole-program, interprocedural analysis detects major problems like bufferoverruns and null pointer de-references, as opposed to coding standards violations. The tool is easy to set up because no modifications to the build environment are required. No additional user input is required to run CodeSonar.

Read more...
 

Lattix Platforms

Platform and language availability for Lattix

Lattix is available a variety of common programming languages and database platforms to fit your needs. In addition you can import dependency information from a variety of UML and modelling tools.

Read more...
 
More Articles...

Static Analysis News