PVS-Studio: static code analysis technology

PVS-Studio provides static analyzers for C, C++, C# and Java languages on Windows, Linux and macOS platforms. PVS-Studio analyzers can vary slightly due to certain features that the languages have. However, all our analyzers share common technologies and approaches to the implementation of static analysis.

Continue reading

1000 eyes that don’t want to check open-source code

There’s a myth that open-source software is better and safer that the closed one. This was reasonably questioned many times. People regularly find epic vulnerabilities in the open source code. These vulnerabilities have been there for a long time. I think the project quality depends on how the development managers arrange the process and what methodologies/tools are used. It has nothing to do with the project being open source or closed source.

Continue reading

Embedded Development Explained | How Can Static Analysis Help?

What is embedded development? What sets it apart from other types of software development? What difficulties do developers of embedded software encounter when just starting out? In this video, we tried to briefly answer these and other questions. Don’t hesitate to give us your feedback!

Have fun watching this video and coding πŸ™‚

Virtual function calls in constructors and destructors (C++)

In different programming languages, the behavior of virtual functions differs when it comes to constructors and destructors. Incorrect use of virtual functions is a classic mistake. Developers often use virtual functions incorrectly. In this article, we discuss this classic mistake.

Continue reading

All hail bug reports: how we reduced the analysis time of the user’s project from 80 to 4 hours

People often see work in support as something negative. Today we’ll look at it from a different perspective. This article is about a real communication of 100+ messages, exceptions, the analysis that didn’t complete in three days…

Continue reading