lgtm.com VS Splint

Lgtm.com — Continuous security analysis for Java, Python, JavaScript, TypeScript, C#, C and C++, free for Open Source. - Source: dev.to / over 1 year ago

I use LGTM for less code smells in my open source projects. But seems like it doesn't support Svelte. Is there any good one out there? Source: over 2 years ago

Lgtm.com — Continuous security analysis for Java, Python, JavaScript, TypeScript, C#, C and C++, free for Open Source. - Source: dev.to / almost 3 years ago

Whenever I see people talk about the portability or compatibility advantages of C, I'm reminded of how "even C isn't compatible with C", because you typically aren't talking about up-to-date GCC or LLVM on these niche platforms... you're talking about some weird or archaic vendor-provided compiler... Possibly with syntax extensions that static analyzers like splint will choke on. (Splint can't even understand near... Source: about 1 year ago

Huh. I think I actually needed to use the equivalent position for certain splint annotations in my C retro-hobby project. Source: about 1 year ago

I often like to say that Rust's bindings are a way to trick people into writing the compile-time safety annotations that they didn't want to write for things like splint. (Seriously. Look into how much splint is capable of checking with the correct annotations.). Source: over 1 year ago

Linters like Splint [0] can do that for C. I’m not saying that Rust’s built-in approach isn’t better, but please be careful about what exactly you claim. [0] http://splint.org/. - Source: Hacker News / over 1 year ago

(Sort of like how, for my DOS hobby project, I use splint to require explicit casts between typedefs so I can use the newtype pattern without having to manually reach into wrapper struct fields in places that don't do conversions.). Source: almost 2 years ago