IEEE

A Comprehensive Review of Static Memory Analysis

Abstract: This review aims to evaluate and compare various static analysis tools across multiple programming languages for memory management. The tools and techniques under scrutiny include pattern ...
sei.cmu

Redemption: A Prototype for Automated Repair of Static Analysis Alerts

Svoboda, D., 2024: Redemption: A Prototype for Automated Repair of Static Analysis Alerts. Carnegie Mellon University, Software Engineering Institute's Insights (blog ...
IEEE

Enhancement in Buffer Overflow (BOF) Detection Capability of Cppcheck Static Analysis Tool

Abstract: Buffer overflow (BOF) vulnerability is one of the most dangerous security vulnerability which can be exploited by unwanted users. This vulnerability can be detected by both static and ...
GitHub

Github action, which allows you to annotate C/C++ code in a pull request with warnings, errors, etc. from cppcheck static analysis tool.

Example of action-fail-level additional parameter usage that sets the step and whole job status to fail, if any of the annotations listed in this parameter will be generated by ...
GitHub

[ci] warnings from cppcheck

Warnings caught by cppcheck should be resolved, if they are determined to be genuine issues and not false positives. cppcheck is a static analyzer for C++ code. This tool can catch some classes of ...