MISRA C: struggle for code quality and security

A couple of years ago the PVS-Studio analyzer got its first diagnostic rules to check program code compliance with the MISRA C and MISRA C++ standards. We collected feedback and saw that our clients were interested in using the analyzer to check their projects for MISRA compliance. So, we decided to further develop the analyzer in this direction. The article covers the MISRA C/C++ standard and the MISRA Compliance report. It also shows what we already managed to do and what we plan to achieve by the end of the year.

Continue reading

How to Exclude Unnecessary Files From Static Analysis? [Excluding Files] 

Few projects can do without outside libraries and other useful ready-made solutions. However, analyzers can see the whole code and check it with abandon. 🔎 That’s why sometimes it’s worth pointing out the spots where they should stop and analyze nothing. In this video, we’ll tell you how to do it and why it is actually useful.

Enjoy the video and have clean code 🙂

Did it have to take so long to find a bug?

Have you ever wondered which type of project demonstrates higher code quality – open-source or proprietary? Our blog posts may seem to suggest that bugs tend to concentrate in open-source projects. But that’s not quite true. Bugs can be found in any project, no matter the manner of storage. As for the code quality, it tends to be higher in those projects where developers care about and work on it. In this small post, you will learn about a bug that took two years to fix, although it could have been done in just five minutes.

Continue reading

How to Speed Up the Project Analysis and NOT to Waste Your Time? [Incremental Analysis]

Static analysis can always back you up when the time comes. But by the time it is done, you will have drunk gallons of coffee… ☕ That’s why developers of these utilities are always looking for a way to make users’ life easier and save time. ⏳ The incremental analysis became the result of this search. If you want to learn more about what it is and how it is related to a compiler, you are in the right place.

Enjoy the video and have clean code 🙂

How static code analysis helps in the GameDev industry

The gaming industry is constantly evolving and is developing faster than a speeding bullet. Along with the growth of the industry, the complexity of development also increases: the code base is getting larger and the number of bugs is growing as well. Therefore, modern game projects need to pay special attention to the code quality. Today we will cover one of the ways to make your code more decent, which is static analysis, as well as how PVS-Studio in practice helps in the game project development of various sizes.

Continue reading

Everybody makes mistakes when writing comparison functions

Recently the OpenSSL 3.0.0 library was released. We decided to look at the project’s code quality and checked it with the PVS-Studio static analyzer. The code quality is excellent. Thus, we cannot write a long article about errors, as we usually do. However, there was one beautiful mistake, and I couldn’t ignore it.

Continue reading

How Visual Studio 2022 ate up 100 GB of memory and what XML bombs had to do with it

In April 2021 Microsoft announced a new version of its IDE – Visual Studio 2022 – while also announcing that the IDE would be 64-bit. We’ve been waiting for this for so long – no more 4 GB memory limitations! However, as it turned out, it’s not all that simple…

Continue reading

Deciding Whether to Learn Java vs. JavaScript

If you are an aspiring programmer, it can be challenging to choose between learning Java and JavaScript as they are both popular coding languages. However, the two languages differ, ranging from writing and assembling code to execution and capabilities. To help you decide whether to learn Java or JavaScript, read on for more information about Java and JavaScript, as well as their similarities and differences.

Continue reading