How to make code reliable and secure [The #misra standard and PVS-Studio]
▻https://hownot2code.com/2022/03/23/how-to-make-code-reliable-and-secure-the-misra-standard-and-pvs-studio
What is the MISRA standard and what is it for? How to secure your code with the use of MISRA and the PVS-Studio static analyzer? In this #Video, we tried to briefly answer these and other questions. Have fun watching this video and #coding 🙂
#Tips_and_tricks #MISRA_compliance #programming #static_code_analysis #technology #tutorial
►https://1.gravatar.com/avatar/a7fa0bb4ebff5650d2c83cb2596ad2aa?s=96&d=identicon&r=G
Code errors in #LLVM 13.0.0 that compiler and analyzers couldn’t find. But #PVS-Studio did
▻https://hownot2code.com/2022/02/16/code-errors-in-llvm-13-0-0-that-compiler-and-analyzers-couldnt-find-but
Yes, even well-tested applications like compilers have errors. Check the #Video to learn more about them. Have fun watching this video and #coding 🙂
#Tips_and_tricks #programming #static_code_analysis #static_code_analyzer #tutorial
►https://1.gravatar.com/avatar/a7fa0bb4ebff5650d2c83cb2596ad2aa?s=96&d=identicon&r=G
10 C# tips for beginners
▻https://hownot2code.com/2022/02/23/10-c-tips-for-beginners
C# is a user-friendly language. However, it may be difficult for beginners. We’ve prepared 10 C# tips for those who are starting their journey. We hope these tips will help you to improve your skills in #programming. Have fun watching this #Video and #coding 🙂
#Development_in_C# #Tips_and_tricks #C# #Csharp #development #static_code_analysis
►https://1.gravatar.com/avatar/a7fa0bb4ebff5650d2c83cb2596ad2aa?s=96&d=identicon&r=G
Using Static Analysis Online [Compiler Explorer]
▻https://hownot2code.com/2021/11/10/using-static-analysis-online-compiler-explorer
Do you want to try a static analyzer but you don’t feel like installing it and figuring the things out? That’s OK 😊 This #Video will tell you how to do it online and most importantly for free. By the way, this website allows you to check if your code compiles 😉 Code from video. … Continue reading Using Static Analysis Online [Compiler Explorer]
#Tips_and_tricks #bugs #coding #CompilerExplorer #development #programming #static_code_analysis #technology #tools #tutorial
►https://1.gravatar.com/avatar/a7fa0bb4ebff5650d2c83cb2596ad2aa?s=96&d=identicon&r=G
How to Use Mass Suppression in PVS-Studio for C#?
▻https://hownot2code.com/2021/11/03/how-to-use-mass-suppression-in-pvs-studio-for-c-2
Have you just run the analyzer and now you have no idea what to do with all this abundance of warnings? 📜 Nothing to worry about – we made a special mechanism that can help you deal with them 💪🏻 In this #Video, you’ll learn about the inner workings of mass warnings suppression mechanism in … Continue reading How to Use Mass Suppression in PVS-Studio for C#?
#Bugs_in_C#_projects #Development_in_C# #Tips_and_tricks #bugs #C# #coding #masssuppression #programming #static_code_analysis #tutorial
►https://1.gravatar.com/avatar/a7fa0bb4ebff5650d2c83cb2596ad2aa?s=96&d=identicon&r=G
Why you should check values of public methods’ parameters
▻https://hownot2code.com/2021/10/22/why-you-should-check-values-of-public-methods-parameters
This note will answer the question – why PVS-Studio considers parameters of public methods potential sources of tainted data. The analyzer can issue warnings if such parameters haven’t been checked before use. The point is that undue confidence in external data may lead to various vulnerabilities – SQLI, XSS, path traversal and others. Most obvious … Continue reading Why you should check values of public methods’ parameters
#Tips_and_tricks #C# #coding #Csharp #programming #security #SharpDevelop #static_code_analysis
►https://1.gravatar.com/avatar/a7fa0bb4ebff5650d2c83cb2596ad2aa?s=96&d=identicon&r=G
How to Use Mass Suppression in PVS-Studio for C++?
▻https://hownot2code.com/2021/10/20/how-to-use-mass-suppression-in-pvs-studio-for-c
Have you just run the analyzer and now you have no idea what to do with all this abundance of warnings? 📜 Nothing to worry about – we made a special mechanism that can help you deal with them 💪🏻 In this #Video, you’ll learn about the inner workings of mass warnings suppression mechanism in … Continue reading How to Use Mass Suppression in PVS-Studio for C++?
#Development_of_64-bit_C/C++_applications #Tips_and_tricks #C++ #coding #cpp #masssuppression #programming #static_code_analysis
►https://1.gravatar.com/avatar/a7fa0bb4ebff5650d2c83cb2596ad2aa?s=96&d=identicon&r=G
How to NOT Drown in the Static Analyzer’s First Report? [Mass Suppression]
▻https://hownot2code.com/2021/10/13/how-to-not-drown-in-the-static-analyzers-first-report-mass-suppression
Have you ever used a statistical analysis tool on a new large project? If you have, you must know that the first scan may produce over 1 thousand and in some cases over 10 thousand warnings. 📑 Luckily, you can control which warnings you want to work with. For example, you can limit the analysis … Continue reading How to NOT Drown in the Static Analyzer’s First Report? [Mass Suppression]
#Tips_and_tricks #Video #coding #development #masssuppression #programming #SAST #static_code_analysis #StaticAnalysis
►https://1.gravatar.com/avatar/a7fa0bb4ebff5650d2c83cb2596ad2aa?s=96&d=identicon&r=G
What is SAST And How Does It Help a Developer?
▻https://hownot2code.com/2021/10/06/what-is-sast-and-how-does-it-help-a-developer
Have you ever met such an abbreviation as SAST? If you have been developing for a long time, then you’re heard of it for sure. However, you might not have given it any importance. In doing so, you’re definitely wrong, because this is an incredibly important thing for the entire development process. 🦾 Today we … Continue reading What is SAST And How Does It Help a Developer?
#Tips_and_tricks #coding #cpp #programming #static_code_analysis #tutorial
►https://1.gravatar.com/avatar/a7fa0bb4ebff5650d2c83cb2596ad2aa?s=96&d=identicon&r=G
CWE #top 25 2021. What is it, what is it for and how is it useful for static analysis?
▻https://hownot2code.com/2021/09/30/cwe-top-25-2021-what-is-it-what-is-it-for-and-how-is-it-useful-for-stat
For the first time PVS-Studio provided support for the CWE classification in the 6.21 release. It took place on January 15, 2018. Years have passed since then and we would like to tell you about the improvements related to the support of this classification in the latest analyzer version. We position the PVS-Studio analyzer as … Continue reading CWE Top 25 2021. What is it, what is it for and how is it useful for static analysis?
#Bugs_in_C#_projects #Tips_and_tricks #bugs #C# #coding #cpp #java #programming #static_code_analysis
►https://1.gravatar.com/avatar/a7fa0bb4ebff5650d2c83cb2596ad2aa?s=96&d=identicon&r=G
How to Hide the Analyzer False Positives?
▻https://hownot2code.com/2021/09/29/how-to-hide-the-analyzer-false-positives
If you’re using a static analyzer, most likely you stumble upon cases when it gets something wrong and gives false positives 👎 So, somehow you need to tell it about an incorrect case and let a false warning go to long rest 💤 The good news is that we have a special mechanism for this … Continue reading How to Hide the Analyzer False Positives?
#64-bit_issues #Tips_and_tricks #bugs #coding #programming #static_code_analysis #tutorial
►https://1.gravatar.com/avatar/a7fa0bb4ebff5650d2c83cb2596ad2aa?s=96&d=identicon&r=G
How to Exclude Unnecessary Files From Static Analysis? [Excluding Files]
▻https://hownot2code.com/2021/09/22/how-to-exclude-unnecessary-files-from-static-analysis-excluding-files
Few projects can do without outside libraries and other useful ready-made solutions. However, analyzers can see the whole code and check it with abandon. 🔎 That’s why sometimes it’s worth pointing out the spots where they should stop and analyze nothing. In this video, we’ll tell you how to do it and why it is … Continue reading How to Exclude Unnecessary Files From Static Analysis? [Excluding Files]
#Tips_and_tricks #bugs #coding #programming #static_code_analysis #tutorial
►https://1.gravatar.com/avatar/a7fa0bb4ebff5650d2c83cb2596ad2aa?s=96&d=identicon&r=G
How to Speed Up the Project Analysis and NOT to Waste Your Time? [Incremental Analysis]
▻https://hownot2code.com/2021/09/15/how-to-speed-up-the-project-analysis-and-not-to-waste-your-time-increme
Static analysis can always back you up when the time comes. But by the time it is done, you will have drunk gallons of coffee… ☕ That’s why developers of these utilities are always looking for a way to make users’ life easier and save time. ⏳ The #incremental_analysis became the result of this … Continue reading How to Speed Up the Project Analysis and NOT to Waste Your Time? [Incremental Analysis]
#Tips_and_tricks #static_code_analysis #static_code_analyzer #tutorial
►https://1.gravatar.com/avatar/a7fa0bb4ebff5650d2c83cb2596ad2aa?s=96&d=identicon&r=G
#peachpie
▻https://hownot2code.com/2021/09/01/peachpie
data == null && throw NullReferenceException The V3080 warning: Possible null dereference. Consider inspecting ‘data’. PhpStream.cs 1382 The value of the data variable is checked in the loop. If the variable equals null and its Length property has a positive value, then the loop exit occurs. Clearly, it’s impossible. Moreover, we have an exception when accessing the Length variable that has the null value. Here, the access … Continue reading PeachPie
#C#_bugs_of_the_month #bugs #Bugs_in_C#_projects #Csharp #opensource #programming #static_code_analysis #static_code_analyzer
►https://1.gravatar.com/avatar/a7fa0bb4ebff5650d2c83cb2596ad2aa?s=96&d=identicon&r=G
Storm Engine
https://hownot2code.com/2021/07/01/storm-engine
new[] – delete Error PVS-Studio warns: V611 The memory was allocated using ‘new T[]’ operator but was released using the ‘delete’ operator. Consider inspecting this code. It’s probably better to use ‘delete [] pVSea;’. Check lines: 169, 191. SEA.cpp 169 However, if the error does not show up at runtime – it does not mean there isn’t … Continue reading Storm Engine
#C/C++_bugs_of_the_month #bugs #C++ #C++bugs #cpp #cppbugs #gamedev #opensource #programming #static_code_analysis
►https://1.gravatar.com/avatar/a7fa0bb4ebff5650d2c83cb2596ad2aa?s=96&d=identicon&r=G