Presentation is loading. Please wait.

Presentation is loading. Please wait.

CodePeer Update Arnaud Charlet CodePeer Update Arnaud Charlet

Published byArabella Hart Modified over 5 years ago

Similar presentations

Presentation on theme: "CodePeer Update Arnaud Charlet CodePeer Update Arnaud Charlet"— Presentation transcript:

1

2 CodePeer Update Arnaud Charlet

3 What is Static Analysis?
Basic Static Analysis: coding standard checking, metrics, compiler warnings and style checks Advanced Static Analysis: symbolic execution/interpretation of source code, whole program analysis to perform software analysis Formal Verification: verify high level or abstract properties of your application, give strong guarantees

4 Why Use Static Analysis?
Make software more reliable at reasonable cost Full coverage of your code No missing check (no “false negatives”) Anticipate problems (get results before testing) Automate part of code review Express and verify your requirements and architecture

5 CodePeer Overview Advanced static analysis tool for Ada
Includes also basic static analysis (gnatcheck, gnatmetric) Detects runtime and logic errors Buffer overflow, division by zero, dead code, … Analyzes complete or partial programs (full Ada) Generates human readable annotations CWE compatible (

6 What’s New in CodePeer 19

7 New Web Interface

8 New Web Interface

9 New Entry Level Level 0 with “lal” checkers New default
Very few false positives Very fast analysis Will allow users to write their own checkers in the future

10 Simple Project Set Up Available at level 0 via the --simple-project switch Only source directories need to be specified No need to specify any naming scheme

11 Security Report

12 Major Documentation Updates
Reorganization Many user workflows documented Analyzing code locally prior to commit Nightly runs on a server Continuous runs on a server after each change Combined desktop/nightly run Combined continuous/nightly run Combined desktop/continuous/nightly run Software customization per project Compare local changes with master Multiple teams analyzing multiple subsystems Use CodePeer to generate a security report

13 GNATcheck integration
Coding standard checker Can be launched automatically by CodePeer Results are integrated in the database Displayed in GPS, HTML, ...

14 GPS Client/Server Access CodePeer results remotely
Perform manual review of messages remotely

15 Improved display of backtraces

16 Detailed Timing Info analyzed admin.scil in 1.21 seconds
analyzed msgproc__body.scil in 0.09 seconds analyzed msgproc.scil in 0.00 seconds analyzed cryptotypes.scil in 6.02 seconds

17 Other Features (1/2) Ability to show only new messages
Ability to compare any two runs Filter messages via switches

18 Other Features (2/2) Reproducible successive runs
Performing reviews via a CSV file Improved precision and analysis time

19 CodePeer Mentorship

20

Download ppt "CodePeer Update Arnaud Charlet CodePeer Update Arnaud Charlet"

Similar presentations

.NET Technology. Introduction Overview of.NET What.NET means for Developers, Users and Businesses Two.NET Research Projects:.NET Generics AsmL.

.NET Technology. Introduction Overview of.NET What.NET means for Developers, Users and Businesses Two.NET Research Projects:.NET Generics AsmL.
Module 7: Advanced Development  GEM only slides here  Started on page 38 in SC09 version Module 77-0.

Module 7: Advanced Development  GEM only slides here  Started on page 38 in SC09 version Module 77-0.
1 Mind Visual Diff An architecture comparison tool December 16 th, 2014 – v0.2.2 Seyvoz Stephane Assystem.

1 Mind Visual Diff An architecture comparison tool December 16 th, 2014 – v0.2.2 Seyvoz Stephane Assystem.
Assembly Code Verification Using Model Checking Hao XIAO Singapore University of Technology and Design.

Assembly Code Verification Using Model Checking Hao XIAO Singapore University of Technology and Design.
Validata Release Coordinator Accelerated application delivery through automated end-to-end release management.

Validata Release Coordinator Accelerated application delivery through automated end-to-end release management.
Automated creation of verification models for C-programs Yury Yusupov Saint-Petersburg State Polytechnic University The Second Spring Young Researchers.

Automated creation of verification models for C-programs Yury Yusupov Saint-Petersburg State Polytechnic University The Second Spring Young Researchers.
Static code check – Klocwork

Static code check – Klocwork
Software Reliability Methods Sorin Lerner. Software reliability methods: issues What are the issues?

Software Reliability Methods Sorin Lerner. Software reliability methods: issues What are the issues?
Slide 1 of 9 Presenting 24x7 Scheduler The art of computer automation Press PageDown key or click to advance.

Slide 1 of 9 Presenting 24x7 Scheduler The art of computer automation Press PageDown key or click to advance.
Simple Web SQLite Manager/Form/Report

Simple Web SQLite Manager/Form/Report
Nikto LUCA ALEXANDRA ADELA. Nikto  Web server assessment tool  Written by Chris Solo and David Lodge  Released on December 27, 2001  Stable release:

Nikto LUCA ALEXANDRA ADELA. Nikto  Web server assessment tool  Written by Chris Solo and David Lodge  Released on December 27, 2001  Stable release:
Formal Methods 1. Software Engineering and Formal Methods  Every software engineering methodology is based on a recommended development process  proceeding.

Formal Methods 1. Software Engineering and Formal Methods  Every software engineering methodology is based on a recommended development process  proceeding.
Chapter-4 Windows 2000 Professional Win2K Professional provides a very usable interface and was designed for use in the desktop PC. Microsoft server system.

Chapter-4 Windows 2000 Professional Win2K Professional provides a very usable interface and was designed for use in the desktop PC. Microsoft server system.
Testing Tools. Categories of testing tools Black box testing, or functional testing Testing performed via GUI. The tool helps in emulating end-user actions.

Testing Tools. Categories of testing tools Black box testing, or functional testing Testing performed via GUI. The tool helps in emulating end-user actions.
Central Online Grading System COGS Dec15-21 dec1521.sd.ece.iastate.edu.

Central Online Grading System COGS Dec15-21 dec1521.sd.ece.iastate.edu.
Towards Scalable Modular Checking of User-defined Properties Thomas Ball, MSR Brian Hackett, Mozilla Shuvendu Lahiri, MSR Shaz Qadeer, MSR Julien Vanegue,

Towards Scalable Modular Checking of User-defined Properties Thomas Ball, MSR Brian Hackett, Mozilla Shuvendu Lahiri, MSR Shaz Qadeer, MSR Julien Vanegue,
Developing Workflows with SharePoint Designer David Coe Application Development Consultant Microsoft Corporation.

Developing Workflows with SharePoint Designer David Coe Application Development Consultant Microsoft Corporation.
Software Engineering Prof. Dr. Bertrand Meyer March 2007 – June 2007 Chair of Software Engineering Static program checking and verification Slides: Based.

Software Engineering Prof. Dr. Bertrand Meyer March 2007 – June 2007 Chair of Software Engineering Static program checking and verification Slides: Based.
Integrating and managing your Engaging Networks data Top ten data features.

Integrating and managing your Engaging Networks data Top ten data features.
Codeigniter is an open source web application. It occupies a very small amount of space in the memory and is most useful for developers who aim to develop.

Codeigniter is an open source web application. It occupies a very small amount of space in the memory and is most useful for developers who aim to develop.

Similar presentations

Ads by Google