© 2018 Authors. To obtain precise and sound results, most of existing static analyzers require whole program analysis with complete source code. However, in reality, the source code of an application always interacts with many third-party libraries, which are often not easily accessible to static analyzers. Worse still, more than 30% of legacy projects [1] cannot be compiled easily due to complicated configuration environments (e.g., third-party libraries, compiler options and macros), making ideal "whole-program analysis" unavailable in practice. This paper presents CoBOT [2], a static analysis tool that can detect bugs in the presence of incomplete code. It analyzes function APIs unavailable in application code by either using function su...
Software bugs are costly: they can have disastrous consequences on critical systems, but also on mor...
Go is a new language especially known for its speed, simplicity, and concurrency approach. The langu...
Software bugs are not going away. Millions of dollars and thousands of developer-hours are spent fin...
Static program analysis is a technique to analyse code without executing it, and can be used to find...
Developers and security analysts have been using static analysis for a long time to ana-lyze program...
Abstract This paper tells the story of how our organization introduced static analysis into its soft...
A large number of tools that automate the process of finding errors in pro-grams has recently emerge...
Regular paper accepted at the MEMICS 2011 workshop. The paper deals with static analysis. It also de...
Abstract: We consider properties desirable for static analysis tools targeted at find-ing bugs in th...
Almost all software contains defects. Some defects are found easily while others are never found, ty...
Static bug detection tools help developers detect problems in the code, including bad programming pr...
AbstractStatic program analysis complements traditional dynamic testing by discovering generic patte...
Static program analysis and model checking are two dif-ferent techniques in bug detection that perfo...
Although software is pervasive, almost all programs suffer from bugs and errors. To detect software ...
C++ has a well-deserved reputation for power and flexibility. It has an equally well-deserved reputa...
Software bugs are costly: they can have disastrous consequences on critical systems, but also on mor...
Go is a new language especially known for its speed, simplicity, and concurrency approach. The langu...
Software bugs are not going away. Millions of dollars and thousands of developer-hours are spent fin...
Static program analysis is a technique to analyse code without executing it, and can be used to find...
Developers and security analysts have been using static analysis for a long time to ana-lyze program...
Abstract This paper tells the story of how our organization introduced static analysis into its soft...
A large number of tools that automate the process of finding errors in pro-grams has recently emerge...
Regular paper accepted at the MEMICS 2011 workshop. The paper deals with static analysis. It also de...
Abstract: We consider properties desirable for static analysis tools targeted at find-ing bugs in th...
Almost all software contains defects. Some defects are found easily while others are never found, ty...
Static bug detection tools help developers detect problems in the code, including bad programming pr...
AbstractStatic program analysis complements traditional dynamic testing by discovering generic patte...
Static program analysis and model checking are two dif-ferent techniques in bug detection that perfo...
Although software is pervasive, almost all programs suffer from bugs and errors. To detect software ...
C++ has a well-deserved reputation for power and flexibility. It has an equally well-deserved reputa...
Software bugs are costly: they can have disastrous consequences on critical systems, but also on mor...
Go is a new language especially known for its speed, simplicity, and concurrency approach. The langu...
Software bugs are not going away. Millions of dollars and thousands of developer-hours are spent fin...