问题
I'm running jenkins in my ubuntu desktop. I need a static code analysis report before pushing my c++ code. I found that coverity is expensive. I'm looking for free analysis tool. Is there any alternatives to Coverity?
回答1:
I recommend SONAR (or SonarQube as it is now called) , you can use it with multipule plugins.
Some free plugins I use are:
PMD
Find bugs
Checkstyle
EDIT: Just noticed you are looking for c++ plugins. Might want to add a tag for c++ to avoid confusion. Sonar is still compatible with c++ , but I have no experience with free c++ SCA plugins for sonar.
回答2:
I work on the tool Cppcheck: http://cppcheck.sf.net
It is an open source static analysis tool for C/C++.
There is a Jenkins plugin for Cppcheck: https://wiki.jenkins-ci.org/display/JENKINS/Cppcheck+Plugin
Some other free static analysis tools that are readily available on the Linux platform would be to use GCC with extra warning flags. CLANG has a static analyser. Perhaps the google cpplint.py tool or veracode will be interesting for you (if stylistic checks are interesting). I am not sure how you integrate these in Jenkins though.
来源:https://stackoverflow.com/questions/21238149/any-alternative-to-coverity-on-jenkins