No Coverity Scan videos yet. You could help us improve this page by suggesting one.
Based on our record, Valgrind should be more popular than Coverity Scan. It has been mentiond 37 times since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
Today I will show you how to use Valgrind to easily check for memory leaks on your code inside a GitHub Action. - Source: dev.to / about 1 month ago
Continuous Integration and Continuous Deployment [CI/CD] pipelines play a crucial role in enforcing code quality, especially when working with memory-unsafe languages. By integrating automated dynamic analysis tools like Valgrind or AddressSanitizer, static analysis tools like Clang Static Analyzer or cppcheck, and manual code review processes, developers can identify and mitigate many memory-related... - Source: dev.to / 3 months ago
Valgrind is an open-source tool designed to help developers identify memory management issues, memory leaks, and various other types of memory-related errors in their programs. It's commonly used for debugging and profiling purposes, particularly in C and C++ development. Here's an overview of Valgrind:. - Source: dev.to / 4 months ago
Valgrind is a tool for debugging memory errors. We have it installed on our linux machines at work. I'm not sure how difficult this is to install and setup. You can find more info here: https://valgrind.org/. Source: 6 months ago
It's often best not to think too much about "aesthetic", or performance, at first, and to focus instead on getting something that works, correctly. FWIW, The Mythical Man-Month[0] recommends to start with a few throw-away prototypes, during which you're gaining expertise over the problem, that you can later crystallize in more definite versions. Now, it doesn't mean good practices should be discarded... - Source: Hacker News / 8 months ago
You can use Coverity for free on open source code. I use it on an app I open sourced for packet processing. https://scan.coverity.com/. Source: over 2 years ago
Scan.coverity.com — Static code analysis for Java, C/C++, C# and JavaScript, free for Open Source. - Source: dev.to / almost 3 years ago
I personally remember Coverity Scan being completely offline for like 6 months while they tried to deal with infrastructure abuse from people mining bitcoin on their computing clusters. Source: about 3 years ago
> Does anyone know any good static analysers other than gcc's or clang's? Visual C++ as well, because since the XP SP2 issues, Microsoft has come up with SAL, which you can also use on your own code, https://docs.microsoft.com/en-us/cpp/code-quality/using-sal-annotations-to-reduce-c-cpp-code-defects?view=msvc-160 Then specialized tooling just for this purpose, just two examples, https://scan.coverity.com/... - Source: Hacker News / about 3 years ago
perf - Perf is a simple app monitoring solution paired with meaningful alerts.
SonarQube - SonarQube, a core component of the Sonar solution, is an open source, self-managed tool that systematically helps developers and organizations deliver Clean Code.
strace - Trace system calls and signals. A diagnostic, debugging and instructional userspace utility.
Checkmarx - The industry’s most comprehensive AppSec platform, Checkmarx One is fast, accurate, and accelerates your business.
VisualVM - VisualVM is a visual tool integrating several commandline JDK tools and lightweight profiling...
Veracode - Veracode's application security software products are simpler and more scalable to increase the resiliency of your application infrastructure.