Code Analysis vs. Code Review
Test and Monitor | Posted December 04, 2008

I've recently run across a couple of articles (links withheld to protet the guilty) warning of the fallacies of relying too much on "Code Review Tools."

This puzzled me for a second before I read a bit farther and realized they were talking about static source code analysis tools like PMD, Findbugs, Coverity, Fortify, etc.

So let this be my plea to people in the industry to pay a bit more attention to nomenclature: Code review is done by humans. Code analysis (static or dynamic) is done by computers. They both have their place, but they solve very different problems - and they of course use very different tools.



By submitting this form, you agree to our
Terms of Use and Privacy Policy

Thanks for Subscribing

Keep an eye on your inbox for more great content.

Continue Reading

Add a little SmartBear to your life

Stay on top of your Software game with the latest developer tips, best practices and news, delivered straight to your inbox