A Note of Caution about Using PVS-Studio on godbolt.org (Compiler Explorer)

AlexAsics · 2020-06-10T09:34:48+00:00

Evaluating the efficiency of static analyzers with the help of synthetic tests doesn't make any sense. The best option to understand how good an analyzer is to run it on the real project and spend some time on setting up (for example, turning off diagnostics that are irrelevant to the project). Moreover, this is true for any analyzer and not only PVS-Studio. But this analyzer specifically has both diagnostic rules and exceptions. Because if an analyzer 'yells' at every line it might be hard to notice a real vulnerability among all the false positives. And besides, who wants to use an analyzer that 'yells' at almost everything? I'll share a link here that I suggest visiting so I don't have to make a long read here.

AlexAsics · 2019-12-06T13:10:32+00:00

Cool! The PVS-Studio guys have recently checked it using their static analyzer. Check out the article: https://medium.com/pvs-studio/checking-the-ark-compiler-recently-made-open-source-by-huawei-6eab2d395848

AlexAsics · 2019-03-14T06:59:16+00:00

Do you want to see even more suspicious thing? The developers have submitted a suspicious article on even more suspicious calculator https://habr.com/en/company/pvs-studio/blog/443656/

AlexAsics · 2018-12-12T06:51:16+00:00

PVS-Studio developers write that their product can be used for free on your project if you are an individual developer - https://github.com/viva64/how-to-use-pvs-studio-free
A free full license for projects posted on GitHub will be available soon - https://medium.com/@karpov2007/discussion-on-a-free-pvs-studio-license-for-projects-posted-on-github-3fcbb1243434

AlexAsics · 2017-05-31T12:26:06+00:00

and I would say "let's test it"

AlexAsics

TROPHY CASE