The PVS-Studio static analyzer encompasses the symbolic execution mechanism. And today we have a great opportunity to demonstrate how this feature helps find errors.

Vulnerabilities produce enormous reputational and financial risks. That′s why many companies are fascinated by security and desire to build a secure development life cycle (SSDLC). So, toda…

Some developers may be dismissive of checks: they deliberately do not check whether the malloc function allocated memory or not. Their reasoning is simple — they think that there will be enough...

Use static analysis regularly, not just before releases... The earlier you find errors, the cheaper they are to fix... You probably heard this a hundred times. Today we'll answer the Why? q…

The PVS-Studio static analyzer is constantly evolving. We enhance various mechanisms, integrate the analyzer with game engines, IDEs, CI/CD instruments, and other systems and services. A fe…

Related variables are one of the main problems of static analysis. This article covers this topic and describes how PVS-Studio developers are fighting false positives caused by different re…

Welcome all developers and everyone who commiserate. Everyone commented their code at least once — that′s for sure. Was it your code or someone else′s? Were these comments useful? Or were they made...

Hello! My name is Alexander and I work as a microcontroller developer.

The cost of making a video game has increased over the years. Game development is becoming increasingly complex, the code base is getting larger as well. It′s getting harder for developers …

We happen to write code for IoT stuff related to electricity, like car charging stations. Since hardware resources are usually sufficient, our main goal is not to save on every byte possibl…

Bitwarden is an open-source password management service. The software helps generate and manage unique passwords. Will PVS-Studio find errors in such a project?

The number of bugs in our bug list has exceeded 15000. This is exactly the number of bugs found by the PVS-Studio team in various open-source projects. Most excitingly, our bug collection i…

PVS-Studio can hide repeated warnings. The analyzer allows you to set baseline, which makes it easy to implement static analysis in legacy projects. Should we provide these features for thi…

Like any other tool, POSIX signals have their own rules on how to use them wisely, securely, and safely. Programming language standards, man pages and the POSIX standard itself have described POSIX...

Nowadays system resources are widely available. Ordinary high-level application software developers have to follow minimum system requirements. So, don′t expect them to optimize the code to…

A long time ago, I performed technical interviews on a regular basis — I was recruiting candidates for the position of a programmer in a company. I had a simple, clear, and smart recruitmen…

A long time ago, I performed technical interviews on a regular basis — I was recruiting candidates for the position of a programmer in a company. I had a simple, clear, and smart recruitment plan (I...

Whichever C++ article you read, it provides serious information, requires thoughtful reading — preferably with a cup of coffee. And what if you want to have fun? That′s why I decided to write this...

In PVS-Studio 7.18, the compiler monitoring utility for Windows got new mechanism that completely eliminates missed compiler launches. In this article, we will remind you how our analyzer c…

An emulator is an application that enables a computer with one operating system to run programs designed for a completely different operating system. Today we talk about GPCS4 — the emulato…