Episode 59: Static Code Analysis
Software Engineering Radio - the podcast for professional software developers16 Juni 2007

Episode 59: Static Code Analysis

This episode is a discussion with Jonathan Aldrich (Assistant Professor at CMU) about static analysis. The discussion covered theory as well as practice and tools. We started with an explanation of what static analysis actually is, which kinds of errors it can find and how it is different from testing and reviews. The core challenge of such an analysis tool is to understand the semantics of the program and reduce its possible state space to make it analysable - in effect reconstructing the programmer's intent from the code. The user can "help" the tool with this challenge by using suitable annotations; also, languages could do a better job of being analysable. The conceptual discussion was concluded by looking at the principles of static analysis (termination, soundness. precision) and how this approach relates to model analysis. The second more practical part started out with a discussion of how Microsoft successfully uses static analysis in their Windows development. We then discussed some of the tools available; these include Findbugs, Coverity, Codesonar, Clockwork, Fortify, Polyspace and Codesurfer. To conclude the discussion of tools, we discussed the commonalities and differences with architecture visualization tools as well as metrics and heuristics. Part three of the discussion briefly looked at how to introduce static analysis tools into an organization's development process and tool chain. We concluded the discussion by looking at situations where static analysis does not work, as well as at the FLUID research project at CMU.

Det här avsnittet är hämtat från ett öppet RSS-flöde och publiceras inte av Podme. Det kan innehålla reklam.

Avsnitt(726)

SE Radio 657: Hong Minhee on ActivityPub and the Fediverse

SE Radio 657: Hong Minhee on ActivityPub and the Fediverse

Hong Minhee, an open source developer and creator of the Fedify ActivityPub library, discusses the ActivityPub protocol and the fediverse with SE Radio's Jeremy Jung. They explore ActivityPub use case...

27 Feb 202540min

SE Radio 656: Ivett Ördög on Rewrite versus Refactor

SE Radio 656: Ivett Ördög on Rewrite versus Refactor

Ivett Ördög speaks with host Sam Taggart about rewrite versus refactor -- a choice that many projects face as they grow. It's a topic that inspires a lot of dogmatic feelings. They discuss how compani...

20 Feb 202549min

SE Radio 655: Charles Humble on Professional Skills for Software Engineers

SE Radio 655: Charles Humble on Professional Skills for Software Engineers

In this episode, Charles Humble speaks withhost Brijesh Ammanath about skills that can provide developers a grounding in systems thinking. Charles is a 30-year veteran of the IT industry, including as...

13 Feb 202555min

SE Radio 654: Chris Patterson on MassTransit and Event-Driven Systems

SE Radio 654: Chris Patterson on MassTransit and Event-Driven Systems

Chris Patterson, founder and principal architect of MassTransit, joins host Jeff Doolittle to discuss MassTransit, a message bus framework for building distributed systems. The conversation begins wit...

4 Feb 20251h 9min

SE Radio 653: Asanka Abeysinghe on Cell-Based Architecture

SE Radio 653: Asanka Abeysinghe on Cell-Based Architecture

Asanka Abeysinghe, CTO at WSO2, joins host Giovanni Asproni to discuss cell-based architecture -- a style that's intended to combine application, deployment, and team architecture to help organization...

30 Jan 20251h

SE Radio 652: Christian Mesh on OpenTofu

SE Radio 652: Christian Mesh on OpenTofu

Christian Mesh, tech lead of the OpenTofu project, speaks with host Robert Blumen about OpenTofu. They start with the history of terraform, terraform providers, license changes to open source projects...

21 Jan 202551min

SE Radio 651: Paul Frazee on Bluesky and the AT Protocol

SE Radio 651: Paul Frazee on Bluesky and the AT Protocol

Paul Frazee, CTO of Bluesky, speaks with SE Radio's Jeremy Jung about the Authenticated Transfer Protocol (ATProto) used by the Bluesky decentralized social network. They discuss why ATProto was creat...

17 Jan 20251h 8min

SE Radio 650: Robert Seacord on What's New in the C Programming Language

SE Radio 650: Robert Seacord on What's New in the C Programming Language

Robert Seacord, the Standardization Lead at Woven by Toyota, the convenor of the C standards committee, and author of The CERT® C Coding Standard, Effective C, and Secure Coding in C and C++, speaks w...

17 Jan 202550min

Populärt inom Utbildning

historiepodden-se
rss-bara-en-till-om-missbruk-medberoende-2
det-skaver
nu-blir-det-historia
harrisons-dramatiska-historia
allt-du-velat-veta
johannes-hansen-podcast
not-fanny-anymore
rss-viktmedicinpodden
roda-vita-rosen
sa-in-i-sjalen
i-vantan-pa-katastrofen
sektledare
rss-max-tant-med-max-villman
rss-foraldramotet-bring-lagercrantz
rikatillsammans-om-privatekonomi-rikedom-i-livet
rss-sjalsligt-avkladd
rss-traningsklubben
rss-dr-bjorklund
vi-gar-till-historien