CodePeer Update Arnaud Charlet CodePeer Update Arnaud Charlet

Slides:



Advertisements
Similar presentations
.NET Technology. Introduction Overview of.NET What.NET means for Developers, Users and Businesses Two.NET Research Projects:.NET Generics AsmL.
Advertisements

Module 7: Advanced Development  GEM only slides here  Started on page 38 in SC09 version Module 77-0.
1 Mind Visual Diff An architecture comparison tool December 16 th, 2014 – v0.2.2 Seyvoz Stephane Assystem.
Assembly Code Verification Using Model Checking Hao XIAO Singapore University of Technology and Design.
Validata Release Coordinator Accelerated application delivery through automated end-to-end release management.
Automated creation of verification models for C-programs Yury Yusupov Saint-Petersburg State Polytechnic University The Second Spring Young Researchers.
Static code check – Klocwork
Software Reliability Methods Sorin Lerner. Software reliability methods: issues What are the issues?
Slide 1 of 9 Presenting 24x7 Scheduler The art of computer automation Press PageDown key or click to advance.
Simple Web SQLite Manager/Form/Report
Nikto LUCA ALEXANDRA ADELA. Nikto  Web server assessment tool  Written by Chris Solo and David Lodge  Released on December 27, 2001  Stable release:
Formal Methods 1. Software Engineering and Formal Methods  Every software engineering methodology is based on a recommended development process  proceeding.
Chapter-4 Windows 2000 Professional Win2K Professional provides a very usable interface and was designed for use in the desktop PC. Microsoft server system.
Testing Tools. Categories of testing tools Black box testing, or functional testing Testing performed via GUI. The tool helps in emulating end-user actions.
Central Online Grading System COGS Dec15-21 dec1521.sd.ece.iastate.edu.
Towards Scalable Modular Checking of User-defined Properties Thomas Ball, MSR Brian Hackett, Mozilla Shuvendu Lahiri, MSR Shaz Qadeer, MSR Julien Vanegue,
Developing Workflows with SharePoint Designer David Coe Application Development Consultant Microsoft Corporation.
Software Engineering Prof. Dr. Bertrand Meyer March 2007 – June 2007 Chair of Software Engineering Static program checking and verification Slides: Based.
Integrating and managing your Engaging Networks data Top ten data features.
Codeigniter is an open source web application. It occupies a very small amount of space in the memory and is most useful for developers who aim to develop.
Proof Carrying Code Zhiwei Lin. Outline Proof-Carrying Code The Design and Implementation of a Certifying Compiler A Proof – Carrying Code Architecture.
Module 2: Configuring Disks and Device Drivers
Week #3 Objectives Partition Disks in Windows® 7 Manage Disk Volumes Maintain Disks in Windows 7 Install and Configure Device Drivers.
PI Data Archive Server COM Points Richard Beeson.
Wordpress with Mina Automated Deployment Solution Jonathan Gravato DIG 4104c.
1 Chapter Overview Defining Operators Creating Jobs Configuring Alerts Creating a Database Maintenance Plan Creating Multiserver Jobs.
PwC New Technologies New Risks. PricewaterhouseCoopers Technology and Security Evolution Mainframe Technology –Single host –Limited Trusted users Security.
Overview of the Automated Build & Deployment Process Johnita Beasley Tuesday, April 29, 2008.
Source Code Management Per Ahlberg Developer Evangelist Developer & Platform Evangelism Microsoft Sweden.
Using Symbolic PathFinder at NASA Corina Pãsãreanu Carnegie Mellon/NASA Ames.
Software Testing Mehwish Shafiq. Testing Testing is carried out to validate and verify the piece developed in order to give user a confidence to use reliable.
The business logic engine for Microsoft IIS Speaker T.M. Arnett.
WebWatcher A Lightweight Tool for Analyzing Web Server Logs Hervé DEBAR IBM Zurich Research Laboratory Global Security Analysis Laboratory
XA Advanced Development with Extender and Enterprise Integrator: RPG is so 1980s… Denise Luther Senior Technical Consultant 704.
March 2004 At A Glance ITPS is a flexible and complete trending and plotting solution which provides user access to an entire mission full-resolution spacecraft.
Connect with life Tejasvi Kumar Developer Technology Specialist | Microsoft India
Software Engineering Lecture 11 Software Testing Presenter: Josef Hallberg 1.
Introduction Aaron Day ● Software Architect ● Open Solutions Interests and Hobbies ● Family ● Software Development ● Woodworking ● Gaming ● Shooting.
12. DISTRIBUTED WEB-BASED SYSTEMS Nov SUSMITHA KOTA KRANTHI KOYA LIANG YI.
PVS-Studio, a static analyzer detecting errors in the source code of C/C++/C++11 applications.
WEB TESTING
Linux Standard Base Основной современный стандарт Linux, стандарт ISO/IEC с 2005 года Определяет состав и поведение основных системных библиотек.
Introduction ITEC 420.
Build and Test system for FairRoot
Using Ada-C/C++ Changer as a Converter Automatically convert to C/C++ to reuse or redeploy your Ada code Eliminate the need for a costly and.
SOFTWARE TESTING Date: 29-Dec-2016 By: Ram Karthick.
JRA2: Acceptance Testing senarious
Working in the Forms Developer Environment
Project Objectives Publish to a remote server
Types for Programs and Proofs
PLM, Document and Workflow Management
Self Healing and Dynamic Construction Framework:
IT Partners Conference Oliver Thomas 19 April 2005
Software Design and Architecture
runtime verification Brief Overview Grigore Rosu
Indexer AKEEL AHMED.
CAE-SCRUB for Incorporating Static Analysis into Peer Reviews
Improving software quality using Visual Studio 11 C++ Code Analysis
GNAT Pro Update Arnaud Charlet GNAT Pro Update Arnaud Charlet
QGen and TQL-1 Qualification
AdaCore Technologies for Cyber Security
CodePeer Update Arnaud Charlet CodePeer Update Arnaud Charlet
QGen and TQL Qualification
GNAT Pro Update Arnaud Charlet GNAT Pro Update Arnaud Charlet
IS 4506 Server Configuration (HTTP Server)
How to stop Fortran programming problems at the source
Continuous Integration
敦群數位科技有限公司(vanGene Digital Inc.) 游家德(Jade Yu.)
Update & Roadmap. Update & Roadmap Established Ada market “Helping to preserve investments done with Ada” “Provide new cost-effective ways to develop.
T-FLEX DOCs PLM, Document and Workflow Management.
Presentation transcript:

CodePeer Update Arnaud Charlet 2018-10-04

What is Static Analysis? Basic Static Analysis: coding standard checking, metrics, compiler warnings and style checks Advanced Static Analysis: symbolic execution/interpretation of source code, whole program analysis to perform software analysis Formal Verification: verify high level or abstract properties of your application, give strong guarantees

Why Use Static Analysis? Make software more reliable at reasonable cost Full coverage of your code No missing check (no “false negatives”) Anticipate problems (get results before testing) Automate part of code review Express and verify your requirements and architecture

CodePeer Overview Advanced static analysis tool for Ada Includes also basic static analysis (gnatcheck, gnatmetric) Detects runtime and logic errors Buffer overflow, division by zero, dead code, … Analyzes complete or partial programs (full Ada) Generates human readable annotations CWE compatible (http://cwe.mitre.org)

What’s New in CodePeer 19

New Web Interface

New Web Interface

New Entry Level Level 0 with “lal” checkers New default Very few false positives Very fast analysis Will allow users to write their own checkers in the future

Simple Project Set Up Available at level 0 via the --simple-project switch Only source directories need to be specified No need to specify any naming scheme

Security Report

Major Documentation Updates Reorganization Many user workflows documented Analyzing code locally prior to commit Nightly runs on a server Continuous runs on a server after each change Combined desktop/nightly run Combined continuous/nightly run Combined desktop/continuous/nightly run Software customization per project Compare local changes with master Multiple teams analyzing multiple subsystems Use CodePeer to generate a security report

GNATcheck integration Coding standard checker Can be launched automatically by CodePeer Results are integrated in the database Displayed in GPS, HTML, ...

GPS Client/Server Access CodePeer results remotely Perform manual review of messages remotely

Improved display of backtraces

Detailed Timing Info analyzed admin.scil in 1.21 seconds analyzed msgproc__body.scil in 0.09 seconds analyzed msgproc.scil in 0.00 seconds analyzed cryptotypes.scil in 6.02 seconds

Other Features (1/2) Ability to show only new messages Ability to compare any two runs Filter messages via switches

Other Features (2/2) Reproducible successive runs Performing reviews via a CSV file Improved precision and analysis time

CodePeer Mentorship

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.