five

Alert Type Frequency Assessment of Open-Source Static Analysis Tools and Codebases - 2025 anonymous

收藏
Zenodo2025-04-10 更新2026-05-26 收录
下载链接:
https://zenodo.org/doi/10.5281/zenodo.15191937
下载链接
链接失效反馈
官方服务:
资源简介:
This includes all data needed to replicate and validate our frequency analysis of static analysis (SA) alerts produced using open-source SA tools on several OSS codebases. It includes instructions how to get and run the SA tools, a Dockerfile to conveniently get and use the SA tools, raw SA tool output, some python scripts to parse that output, parsed SA data and aggregate analyses, and SA data augmented with CERT coding rule and CWE data.   The SA tools used: clang-tidy version 15.07    cppcheck version 2.9    CERT Rosecheckers    The codebases analyzed: zeek version 5.1.1 git version 2.39.0 dos2unix version 7.4.3
提供机构:
Zenodo
创建时间:
2025-04-10
二维码
社区交流群
二维码
科研交流群
商业服务