ugh, I’ve been trying to package it for arch and it’s such a pain in the ass. It uses a bunch of ocaml libraries that didn’t previously have packages and it bundles a custom version of clang with its own modifications and extensions. Oh, and due to requiring a custom clang, builds can be over half an hour before anything goes wrong.
If anybody feels like having some weekend fun, BCHS is always wanting for articles on using these tools! (I use scan-build all the time, though I swear mostly by AFL and valgrind.)
This is not a review of contemporary C/C++ static code analyzers, this is a review of the wikipedia list of static analyzers.. I was expecting a bit more than sorting a wikipedia list and adding a two line description to each tool.
The most glaring omission on the post is Infer from Facebook. I woud rate Infer as the most impressive open source C/C++ static analyzer, by far.
ugh, I’ve been trying to package it for arch and it’s such a pain in the ass. It uses a bunch of ocaml libraries that didn’t previously have packages and it bundles a custom version of clang with its own modifications and extensions. Oh, and due to requiring a custom clang, builds can be over half an hour before anything goes wrong.
Whoa, if that thing does what it says on the tin, I’m super interested.
I hope it does.
Cppcheck did not.
EDIT: A nasty nest of segfaults is all I can get out of it. Maybe I’ll check back next year.
If anybody feels like having some weekend fun, BCHS is always wanting for articles on using these tools! (I use scan-build all the time, though I swear mostly by AFL and valgrind.)
This is not a review of contemporary C/C++ static code analyzers, this is a review of the wikipedia list of static analyzers.. I was expecting a bit more than sorting a wikipedia list and adding a two line description to each tool.
Would you put TenDRA on this list?