How does it work?
Parasoft C/C++test uses a state-of-the-art C/C++ code parsing engine to analyze and understand the code under test, then applies checkers to find problems and violations in the code. Over 2500 different rules are shipped with the C/C++test tool, covering general best practices (Effective C++, Modern C++), industry standards (AUTOSAR, MISRA, JSF, CERT, CWE), and specialized bug-finders (i.e. null pointer dereference, division by zero, memory leaks and more). The rules are grouped into predefined configurations, allowing users to quickly configure the analysis.
Static analysis can be performed either in the IDE (Eclipse, Visual Studio) or in the command-line interface (for automation/continuous integration scenarios). The results of the analysis can be accessed immediately (in the IDE, or with HTML/PDF/XML reports) or aggregated for further post-processing, reporting, and analytics. Parasoft’s Process Intelligence Engine seamlessly integrates with other components of the development environment (i.e. source control management system or requirements management system) to help users effectively manage development efforts. Users can, for example, view static analysis results only from the code that has changed between two different builds, or view coverage results achieved on only modified code.
To make static analysis and unit testing more maintainable, Parasoft helps users manage results of testing, including prioritizing findings, suppressing unwanted findings, assigning findings to developers, and much more. Customizing the views of these results help teams focus on the warnings with the highest risk.
Parasoft C/C++test’s static code analyzer shines in a functional-safety development process, certified by TÜV SÜD to comply with ISO 26262 and IEC 61508, and providing a multi-standard Qualification Kit (ISO 26262, IEC 61508, DO 178B/C) with extra automation to help users manage the burden of compliance documentation.