手法を比較
選択した手法を並べて確認できます。異なる行はハイライト表示されます。
| 静的コード解析× | コードカバレッジ分析× | |
|---|---|---|
| 分野 | ソフトウェア工学 | ソフトウェア工学 |
| 系統 | Process / pipeline | Process / pipeline |
| 提唱年≠ | 2001 | 1988 |
| 提唱者≠ | David Engler and William Pugh | Test Coverage Community |
| 種類≠ | automated analysis | measurement and analysis |
| 原典≠ | Chess, B., & West, J. (2007). Secure Programming with Static Analysis. Addison-Wesley Professional. link ↗ | Zhu, H., Hall, P. A. V., & May, J. H. R. (1997). Software unit test coverage and adequacy. ACM Computing Surveys, 29(4), 366–427. DOI ↗ |
| 別名 | static analysis, code inspection, automated review | coverage metrics, test coverage, instrumentation-based measurement |
| 関連 | 4 | 4 |
| 概要≠ | Static code analysis automatically examines source code without execution, detecting potential bugs, security vulnerabilities, code smells, and style violations. Pioneered by Engler and Pugh (2001), automated analysis tools scan codebases at scale, identifying defect patterns faster than manual review. Organizations integrate static analysis into continuous integration pipelines to prevent defects early. | Code coverage analysis measures the extent to which source code is executed by a test suite, quantifying which lines, branches, or paths are exercised. Tools instrument code to track execution, reporting coverage percentages and identifying untested regions. Coverage analysis guides test creation, detects dead code, and validates test adequacy in quality assurance processes. |
| ScholarGateデータセット ↗ |
|
|