Static analysis works on source code and tries to identify errors based on what it can tell about the program. For example, it can highlight “dead code” that will never execute. And sometimes it can identify potential race conditions.
Static Analysis? We Don’t Need No Stinkin’ Static Analysis
Why are so few using static-analysis tools when security and reliability are so important these days? Find out what Technology Editor Bill Wong thinks.
What's the Difference Between Sound and Unsound Static Analysis?
Timeliness and cost are two main factors for code verification, which separates sound from unsound. But recent advances are closing those gaps.
Shore Up Software Security via Formal Methods-Based Static Analysis
As autonomous systems, connected devices, and AI technologies continue to come online, engineering teams are finding it more difficult to rely on traditional development methods.
Code testing with modern static analysis provides a solution that not only allows developers to identify and fix concurrency defects in new code, it also provides a cost-effective and automated way to uncover such defects in software that’s being ported to run on multi-threaded processors.
