Abstract
Software defects can increase production costs of software considerably. The earlier a defect is identified, the lower are the resulting costs. Static code analysis tools offer the opportunity for detecting software defects in an early stage of the software development process.
In this thesis three static code analysis tools are evaluated. Two of the tools that were analyzed are available free of charge (FxCop and Gendarme) and one is a commercially acquirable tool (CodeIt.Right). The metric used for evaluation is the so called Over Detection Rate (ODR). With the help of the ODR, it can be shown, which rules can achieve reliable results.
Three open source products, implemented in C#, have been analyzed. Due to the combination of these three products, a large rule coverage for each tool could be realized.
The number of findings to be evaluated was specified through a key, defined ex ante. As incorrect classified findings, are discussed in detail in the result section of this thesis.
| Original language | German (Austria) |
|---|---|
| Publication status | Published - Mar 2011 |
Fields of science
- 102 Computer Sciences
- 102009 Computer simulation
- 102015 Information systems
- 102026 Virtual reality
- 102027 Web engineering
- 202022 Information technology
- 502050 Business informatics