cloudstack-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Hugo Trippaers <h...@trippaers.nl>
Subject Coverity static code analysis
Date Mon, 04 Nov 2013 16:39:18 GMT
Hey all,

At CloudOpen in Edinburgh i joined a presentation on Coverity, a static code analysis tool.
Some of you may have heard of it already, it is famous for doing the code analysis on the
Linux kernel for quite some years already. They added  support for the java language quite
a while back. The presenter dropped by our CloudStack booth and we had a nice chat on static
code analysis. 

You might have guessed the next step, i added CloudStack to the Coverity scanning service
at scan.coverity.com: http://scan.coverity.com/projects/943.
 - 1.044.609 lines of code
 - 6.70 defect density
 - 6997 outstanding defects

The reasoning is obviously that anything that will help us improve quality should be considered.
However just adding the CloudStack sources to the scan isn’t going to solve anything. For
that we all need to pitch in an help out with getting the scan results triaged, assigned and
fixed. So signup en-masse and go fix ;-)

Note to new and aspiring CloudStack developers, don’t know where to start but you want to
help out? This is a great way to get to know the code and the community. Have a look at one
of the open items on Coverity, fix it and submit it for review at reviews.apache.org. 

Cheers,

Hugo




Mime
View raw message