In this white paper, we dispel some of the myths about Static Code Analysis (SCA), and provide code examples to illustrate how SCA contributes to better code throughout the SDLC.
SCA can be described as the analysis of whole-program source code without the execution of that program. A number of interpretations and even misconceptions about this technology and how it impacts or benefits developers have emerged over time.
Thankfully, there is also a lot of information about the many benefits SCA provides, from faster project execution, to better source code at check-in, to less costly development cycles and shorter time-to-market.
Download this white paper to dispel the following SCA myths:
Static analysis tools are glorified compilers.
Static analysis is for junior developers.
Static analysis is noisy, generating too many false-positives.
It's the job of the test/QA team to find the defects; we don't need a development tool for that.