Tools to maintain the code quality.

To maintain code quality we use code review tools. There are many tools to all programming languages.
  1. Veracode
    • Veracode is a static analysis tool which is built on the SaaS model. This tool is mainly used to analyze the code from a Security point of view.
  2. RIPS Technologies
    • RIPS is the only code analysis solution that performs language-specific security analysis. It detects the most complex security vulnerabilities deeply nested within the source code that no other tools are able to find.
    • It supports major frameworks, SDLC integration, relevant industry standards and can be deployed as a self-hosted software or used as software-as-a-service. With its high accuracy and no false positive noise, RIPS is the ideal choice for analyzing Java and PHP applications
  3. PVS - Studio
    • PVS-Studio is a tool for detecting bugs and security weaknesses in the source code of programs, written in C, C++, C#, and Java. It works in Windows, Linux, and macOS environment.
    • It is possible to integrate it into Visual Studio and other widespread IDE. The results of the analysis can be imported into SonarQube.
  4. Kiuwan
    • Kiuwan is a SAST and SCA platform with the largest technology coverage and integrations in the market. With a DevSecOps approach, Kiuwan achieves outstanding benchmark scores (Owasp, NIST, CWE, etc) and offers a wealth of features that go beyond static analysis, catering to every stakeholder in the SDLC
  5. Kritika
    • Kritika.IO analyzes your code and provides useful information on your code style, code smells, complexity, duplications. It also analyzes open source dependencies licenses and looks for known vulnerabilities.
    • Kritika.IO integrates with GitHub, BitBucket and GitLab. It uses progressive pricing that depends solely on the amount of code analyzed. Analyzing open source projects is completely free and feature complete. Among unique languages, it supports Perl and Tcl.
  6. Code compare
    • Code Compare – is a file and folder comparison and merge tool. Over 70,000 users actively use Code Compare while resolving merge conflicts and deploying source code changes. Code Compare is a free compare tool designed to compare and merge differing files and folders. Code Compare integrates with all popular source control systems: TFS, SVN, Git, Mercurial, and Perforce. Code Compare is shipped both as a standalone file diff tool and a Visual Studio extension.
  7. Coverity
    • Coverity Scan is an open source cloud-based tool. It works for projects written using C, C++, Java C# or JavaScript. This tool provides a very detailed and clear description of the issues which helps in faster resolution. A good choice if you are looking for an open source tool.
  8. CAST
    • An automated tool which can be used to analyze more than 50+ languages works excellently regardless of the size of the project. In addition, it provides a Dashboard to users which help in measuring quality and productivity.
  9. CodeSonar
    • A Static analysis tool by Grammatech not only lets a user find programming error, but it also helps in finding out domain related coding errors. It also allows customizing checkpoints and also built in checks can be configured as per the requirement. Overall a great tool to detect security vulnerabilities and its ability to do a deep static analysis makes this stand out from rest of the other static analysis tools available in the market.
  10. Understand
    • Just like its name, this tool lets user UNDERSTAND code by analyzing, measuring, visualizing and maintaining. This allows quick analysis of massive codes. This is one tool which is mainly used by aerospace and automakers industry. Supports major languages like C/C++, ADA, COBOL, FORTRAN, PASCAL, Python and other web languages.
  11. Goanna
    • A security static analysis tool for C/C++ and allows integration with Microsoft Visual Studio, Eclipse, Texas Instruments Code Composer and many more IDE’s.This can be run like a compiler and hence allows analyzing file level details in addition to whole projects. Also, has excellent error reporting feature.
  12. SonarQube
    • It is an open source web-based tool, extending its coverage to more than 20 languages, and also allows a number of plugins.

Comments

Post a Comment

Popular posts from this blog

Discuss the key features of Object Oriented Programming

The key features of the OOP are, Data Abstraction This meaning is hide the implementation details and represent the important details.This Will separate interface and implementation.  Encapsulation This describe the idea of bundling data and methods that work on that data within one unit. For example class in Java. Information Hiding The process of hiding details of an object or function. This reduce complexity of the program. Inheritance This will enable new objects to take from properties of another class.  Polymorphism Polymorphism is ability to redefine methods for derived classes.
Read more

Differentiate the three models of VCSs, stating their pros and cons

Let's we identify the three models of Version Control Systems,   In Local Version Control Systems the version database  and the project file are in the same computer. This is the oldest version control system. In Centralized Version Control System, the version database is stored in central VCS server. When developers want to make change project files, they get that files to their computers and change it. In Distributed Version Control System, the version database is installed to server computer and client computer both. 
Read more

The Features Provided by jQuery

jQuery is the Library of JavaScript. It is simple and easy to learn. For perform any task jQuery required less code compare to javascript. jQuery Features:- Simple and Easy -  It have predefined method using you can perform any task easily compare to JavaScript. And it is easy to learn. Lightweight -  It is very lightweight library - about 19KB in size ( Minified and gzipped ). CSS manipulation -  It have predefined css() method for manipulate style for any Html elements. Html manipulation -  The jQuery made it easy to select DOM elements, traverse them and modifying their content. Cross browser support -  It support all modern web-browser including IE-6. Event handling -  It support event handling like click mouse button. JavaScript Library -  It is JavaScript library. Ajax Support -  It support ajax, you can develop a responsive and feature-rich site using AJAX technology. Built-in Animation -  It have predefin...
Read more