Litcius/Paper detail

Static Code Analysis Tools: A Systematic Literature Review

Darko Stefanović, Danilo Nikolić, Dušanka Dakić, I. Bozovic Spasojevic, Sonja Ristić

2020Annals of DAAAM for ... & proceedings of the ... International DAAAM Symposium40 citationsDOIOpen Access PDF

Abstract

Static code analysis tools are being increasingly used to improve code quality. Such tools can statically analyze the code to find bugs, security vulnerabilities, security spots, duplications, and code smell. The quality of the source code is a key factor in any software product and requires constant inspection and supervision. Static code analysis is a valid way to infer the behavior of a program without executing it. Many tools allow static analysis in different frameworks, for different programming languages, and for detecting different defects in the source code. Still, a small number of tools provide support for domain-specific languages. This paper aims to present a systematic literature review focusing on the most frequently used static code analysis tools and on classifying the presented tools according to the supported both generalpurpose and domain-specific programming languages and the types of defects a specific tool can detect.

Topics & Concepts

Computer scienceCode (set theory)Static program analysisProgramming languageSoftwareSoftware developmentSet (abstract data type)Software Testing and Debugging TechniquesSoftware Reliability and Analysis ResearchAdvanced Malware Detection Techniques
Static Code Analysis Tools: A Systematic Literature Review | Litcius