PVS-Studio is a proprietary static code analyzer on guard of code quality, security, and code safety supporting C, C++, C++11, C++/CLI, C++/CX, C# and Java.
PVS‑Studio detects various errors typos, dead code, and potential vulnerabilities (static application security testing, or SAST), the analyzer matches warnings to the common weakness enumeration, SEI CERT coding standards, and supports the MISRA standard. PVS‑Studio warning classifications for various standards:
- CVE (common weakness enumeration)
- SEI CERT coding standard
- MISRA
- OWASP application security verification standard
PVS-Studio supports integration with the most diverse development tools and compilation systems, as Visual Studio 2022, IntelliJ IDEA, Rider, CLion, VSCode, Qt Creator, Eclipse, MSBuild, CMake, Make, Ninja, Gradle, Maven, Azure DevOps, Unity, and Unreal 5.
See also
References
C# Joins PVS-Studio Line Up http://www.i-programmer.info/news/89-net/9343-c-joins-pvs-studio-line-up.html ↩
PVS-Studio extension at msdn.microsoft.com //visualstudiogallery.msdn.microsoft.com/2cc8fb8e-eb39-4656-bafb-af341471edbd ↩
Static Code Analyzer Reportedly Finds 10,000 Open Source Bugs //adtmag.com/articles/2016/08/18/open-source-bugs.aspx ↩
"Classification of PVS-Studio warnings according to the Common Weakness Enumeration (CWE)". pvs-studio.com. Retrieved 2022-01-11. https://pvs-studio.com/en/pvs-studio/sast/cwe/ ↩
"Classification of PVS-Studio warnings according to the SEI CERT Coding Standard". pvs-studio.com. Retrieved 2022-01-11. https://pvs-studio.com/en/pvs-studio/sast/cert/ ↩
"Classification of PVS-Studio warnings according to the standards: MISRA C, MISRA C++". pvs-studio.com. Retrieved 2022-01-11. https://pvs-studio.com/en/pvs-studio/sast/misra/ ↩
"Classification of PVS-Studio warnings according to the OWASP Application Security Verification Standard (ASVS)". pvs-studio.com. Retrieved 2022-01-11. https://pvs-studio.com/en/pvs-studio/sast/owasp/ ↩