Any alternative to Coverity on Jenkins? [closed]

拥有回忆 提交于 2019-12-23 12:29:10

问题


I'm running jenkins in my ubuntu desktop. I need a static code analysis report before pushing my c++ code. I found that coverity is expensive. I'm looking for free analysis tool. Is there any alternatives to Coverity?


回答1:


I recommend SONAR (or SonarQube as it is now called) , you can use it with multipule plugins.

Some free plugins I use are:

PMD

Find bugs

Checkstyle

EDIT: Just noticed you are looking for c++ plugins. Might want to add a tag for c++ to avoid confusion. Sonar is still compatible with c++ , but I have no experience with free c++ SCA plugins for sonar.




回答2:


I work on the tool Cppcheck: http://cppcheck.sf.net

It is an open source static analysis tool for C/C++.

There is a Jenkins plugin for Cppcheck: https://wiki.jenkins-ci.org/display/JENKINS/Cppcheck+Plugin

Some other free static analysis tools that are readily available on the Linux platform would be to use GCC with extra warning flags. CLANG has a static analyser. Perhaps the google cpplint.py tool or veracode will be interesting for you (if stylistic checks are interesting). I am not sure how you integrate these in Jenkins though.



来源:https://stackoverflow.com/questions/21238149/any-alternative-to-coverity-on-jenkins

易学教程内所有资源均来自网络或用户发布的内容,如有违反法律规定的内容欢迎反馈
该文章没有解决你所遇到的问题?点击提问,说说你的问题,让更多的人一起探讨吧!