Share your knowledge at the LQ Wiki.
Go Back > Forums > Linux Forums > Linux - News
User Name
Linux - News This forum is for original Linux News. If you'd like to write content for LQ, feel free to contact us.
All threads in the forum need to be approved before they will appear.


  Search this Thread
Old 07-30-2015, 01:46 PM   #1
Registered: Jun 2000
Distribution: Debian, Red Hat, Slackware, Fedora, Ubuntu
Posts: 13,196

Rep: Reputation: 3816Reputation: 3816Reputation: 3816Reputation: 3816Reputation: 3816Reputation: 3816Reputation: 3816Reputation: 3816Reputation: 3816Reputation: 3816Reputation: 3816
Coverity Report Finds Open Source Code Quality Beats Commercial Code

Synopsys has announced the release of its annual Coverity Scan Open Source Report, which is widely followed. The 2014 report details the analysis of nearly 10 billion lines of source code through the Coverity Scan service and commercial usage of the Synopsys Testing Platform.

For the report, the company analyzed code from more than 2,500 open source C/C++ projects as well as an anonymous sample of commercial projects in 2014. Additionally, the report highlights results from several popular, open source Java and C# projects that have joined the Coverity Scan service since March 2013. Here are findings.

The Coverity Scan Open Source Report is based on scans of billions of lines of code, and has been used to measure the state of open source code quality for nine years. Notably, open source code outpaced commercial code for quality in the 2013 report. This trend continues in 2014.

Key findings from the latest report include:

- Defect density (defects per 1,000 lines of code)of open source code and commercial code has continued to improve since 2013: When comparing overall defect density numbers between 2013 and 2014, the defect density of both open source code and commercial code has continued to improve. Open source code defect density improved from 0.66 in 2013 to 0.61 in 2014, while commercial code defect density improved from 0.77 to 0.76.
- Coverity Scan aids OpenSSL in post-Heartbleed investigation: According to OpenSSL co-founder Tim Hudson, the Coverity Scan service helped to catch newly discovered defects and highlight where other issues like the Heartbleed bug might exist. Since Heartbleed, OpenSSL has fixed 302 defects found by Coverity Scan, and now has a 0.21 defect density.
- Linux remains a benchmark for static analysis defect density: Since joining the Coverity Scan service in 2006, Linux has retained its commitment to quality, which remains a key focus. During 2014, Linux leveraged the Coverity Scan service to find and fix more than 500 high-impact defects, including resource leaks, memory corruptions and uninitialized variables.
More at OStatic...



Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: Open source trounces proprietary software for code defects, Coverity analysis finds LXer Syndicated Linux News 0 04-19-2014 05:02 AM
LXer: Coverity finds open source software quality better than proprietary code LXer Syndicated Linux News 0 04-16-2014 09:03 PM
LXer: Open Source Python Code Sets New Standard for Quality: Studu LXer Syndicated Linux News 0 09-03-2013 06:51 AM
LXer: Coverity Finds Fewer Defects in Open Source Software LXer Syndicated Linux News 0 09-29-2009 02:02 AM
LXer: Coverity to Regularly Scan Security and Quality of 250 Open Source Projects LXer Syndicated Linux News 0 05-02-2007 01:46 AM > Forums > Linux Forums > Linux - News

All times are GMT -5. The time now is 03:35 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration