Filters








1,148 Hits in 5.4 sec

Static correspondence and correlation between field defects and warnings reported by a bug finding tool

Cesar Couto, João Eduardo Montandon, Christofer Silva, Marco Tulio Valente
2011 Software quality journal  
Therefore, this article reports a study carried out to evaluate the degree of correspondence and correlation between postrelease defects (i.e., field defects) and warnings issued by FindBugs, a bug finding  ...  As a result, we have concluded that there is no static correspondence between field defects and warnings.  ...  Acknowledgments This work was supported by FAPEMIG, CAPES, and CNPq.  ... 
doi:10.1007/s11219-011-9172-5 fatcat:wbljmhxqszduvaaevf5cr53jcy

To what extent could we detect field defects? an empirical study of false negatives in static bug finding tools

Ferdian Thung, Lucia, David Lo, Lingxiao Jiang, Foyzur Rahman, Premkumar T. Devanbu
2012 Proceedings of the 27th IEEE/ACM International Conference on Automated Software Engineering - ASE 2012  
We find that although many field defects could be detected by static bug finding tools, a substantial proportion of defects could not be flagged.  ...  Our study addresses the question: To what extent could field defects be found and detected by state-of-the-art static bug-finding tools?  ...  We appreciate very much the valuable comments from anonymous reviewers and our shepherd Andreas Zeller for improving this paper.  ... 
doi:10.1145/2351676.2351685 dblp:conf/kbse/ThungLLJRD12 fatcat:3wk347vaurbhvajqdnubcra6uu

To what extent could we detect field defects? An extended empirical study of false negatives in static bug-finding tools

Ferdian Thung, Lucia, David Lo, Lingxiao Jiang, Foyzur Rahman, Premkumar T. Devanbu
2014 Automated Software Engineering : An International Journal  
We find that although many field defects could be detected by static bug-finding tools, a substantial proportion  ...  Our study addresses the question: To what extent could field defects be detected by state-of-the-art static bug-finding tools?  ...  We also appreciate very much the valuable comments from anonymous reviewers and our shepherd Andreas Zeller for earlier versions of this paper.  ... 
doi:10.1007/s10515-014-0169-8 fatcat:dubtx2qcvzdjfotzpcld6j32re

An Evaluation of Two Bug Pattern Tools for Java

Stefan Wagner, Florian Deissenboeck, Michael Aichner, Johann Wimmer, Markus Schwalb
2008 2008 International Conference on Software Testing, Verification, and Validation  
No field defects have been found that could have been detected by the tools.  ...  Automated static analysis is a promising technique to detect defects in software.  ...  Interestingly, we could not find a single case where a field defect could be related to a warning generated by one of the bug pattern tools.  ... 
doi:10.1109/icst.2008.63 dblp:conf/icst/WagnerDAWS08 fatcat:7cyynf5lkrcjbbnfj7ze3rpm4y

Comparing static bug finders and statistical prediction

Foyzur Rahman, Sameer Khatri, Earl T. Barr, Premkumar Devanbu
2014 Proceedings of the 36th International Conference on Software Engineering - ICSE 2014  
The all-important goal of delivering better software at lower cost has led to a vital, enduring quest for ways to find and remove defects efficiently and accurately.  ...  by statistical defect prediction.  ...  Indeed prior work by Nagappan & Ball [16] suggests that there is a direct, positive correlation between static analysis warning density and defect density (although Marchenko & Abrahamsson [14] found  ... 
doi:10.1145/2568225.2568269 dblp:conf/icse/RahmanKBD14 fatcat:npu7xfc6nrbhdavgnfnfbmwhne

EFindBugs: Effective Error Ranking for FindBugs

Haihao Shen, Jianhong Fang, Jianjun Zhao
2011 2011 Fourth IEEE International Conference on Software Testing, Verification and Validation  
Therefore, programmers have to spend a considerable amount of time on screening out real bugs from a large number of reported warnings, which is time-consuming and inefficient.  ...  In the first stage, EFindBugs initializes the ranking by assigning predefined defect likelihood for each bug pattern and sorting the error reports by the defect likelihood in descending order.  ...  This work was supported in part by National Natural Science Foundation of China (NSFC) (Grant No. 60673120 and 60970009).  ... 
doi:10.1109/icst.2011.51 dblp:conf/icst/ShenFZ11 fatcat:iicd473corburn7x6i4xfoinge

Evaluating static analysis defect warnings on production software

Nathaniel Ayewah, William Pugh, J. David Morgenthaler, John Penix, YuQian Zhou
2007 Proceedings of the 7th ACM SIGPLAN-SIGSOFT workshop on Program analysis for software tools and engineering - PASTE '07  
In this paper, we discuss the warnings found by FindBugs, a static analysis tool that finds defects in Java programs.  ...  We also provide some insight into why static analysis tools often detect true but trivial bugs, and some information about defect warnings across the development lifetime of software release.  ...  We only report on the high and medium priority correctness warnings generated by a developmental build of Find-Bugs 1.1.4.  ... 
doi:10.1145/1251535.1251536 dblp:conf/paste/AyewahPMPZ07 fatcat:3s7zqknrcjai7d7aqyueu7vqcu

Finding more null pointer bugs, but not too many

David Hovemeyer, William Pugh
2007 Proceedings of the 7th ACM SIGPLAN-SIGSOFT workshop on Program analysis for software tools and engineering - PASTE '07  
Reasoning uses their own static analysis tool, followed by manual auditing and removal of false positives before a report is given to their customers.  ...  As of result of the work presented in this paper, FindBugs now reports 4 of the 9 warnings in Tomcat, shows that one of the warnings reported by Reasoning is a false positive, and classifies the remaining  ...  Reasoning had applied their own static analysis tool and after filtering out the warnings they believed to be false positives reported 9 null pointer bugs.  ... 
doi:10.1145/1251535.1251537 dblp:conf/paste/HovemeyerP07 fatcat:hyyjcyxkdrhvjoellsa64zf6gq

The Google FindBugs fixit

Nathaniel Ayewah, William Pugh
2010 Proceedings of the 19th international symposium on Software testing and analysis - ISSTA '10  
In May 2009, Google conducted a company wide FindBugs "fixit". Hundreds of engineers reviewed thousands of Find-Bugs warnings, and fixed or filed reports against many of them.  ...  In this paper, we discuss the lessons learned from this exercise, and analyze the resulting dataset, which contains data about how warnings in each bug pattern were classified.  ...  Figure 4 presents correlations between the bug rank and the percent of reviews that received a particular classification when issues are grouped by bug rank, by bug pattern and by issue (as described  ... 
doi:10.1145/1831708.1831738 dblp:conf/issta/AyewahP10 fatcat:yzfsdght2bdbtjxwnagkxustga

Crowd debugging

Fuxiang Chen, Sunghun Kim
2015 Proceedings of the 2015 10th Joint Meeting on Foundations of Software Engineering - ESEC/FSE 2015  
We compared the confirmed bugs with three popular static analysis tools (FindBugs, JLint and PMD).  ...  Our approach reveals 189 warnings and 171 (90.5% ) of them are confirmed by developers from eight high-quality and well-maintained projects.  ...  We ran three static analysis tools, PMD, JLint and Find-Bugs on all the subjects and compared the warnings produced by them as described in Section 4.4.  ... 
doi:10.1145/2786805.2786819 dblp:conf/sigsoft/ChenK15 fatcat:tjla7iqge5b5tfmp7qtcjzikoe

In this issue

Rachel Harrison
2013 Software quality journal  
Continuing with the theme of defects, the paper 'Static correspondence and correlation between field defects and warnings reported by a bug finding tool' by Cesar Couto, João Eduardo Montandon, Christofer  ...  Silva and Marco Tulio Valente discusses an evaluation of the relationship between post-release defects and reports from a bug finding tool to determine the usefulness of such tools.  ...  challenges in the field.  ... 
doi:10.1007/s11219-013-9198-y fatcat:xnet47andnahxppdeofdeq7hua

Software repository mining with Marmoset

Jaime Spacco, Jaymie Strecker, David Hovemeyer, William Pugh
2005 Proceedings of the 2005 international workshop on Mining software repositories - MSR '05  
To validate the effectiveness of our tool, we performed an experiment which found a statistically significant correlation between warnings reported by a static analysis tool and failed unit tests.  ...  We believe the data collected by Marmoset will be a rich source of insight about learning to program and software evolution in general.  ...  CORRELATION BETWEEN WARNINGS AND EXCEPTIONS In this section, we show the correlation between selected bug detectors and the exceptions that would likely correspond to the faults identified by these detectors  ... 
doi:10.1145/1083142.1083149 dblp:conf/msr/SpaccoSHP05 fatcat:6c5vli3swbd2heloafclweqgtq

Software repository mining with Marmoset

Jaime Spacco, Jaymie Strecker, David Hovemeyer, William Pugh
2005 Software engineering notes  
To validate the effectiveness of our tool, we performed an experiment which found a statistically significant correlation between warnings reported by a static analysis tool and failed unit tests.  ...  We believe the data collected by Marmoset will be a rich source of insight about learning to program and software evolution in general.  ...  CORRELATION BETWEEN WARNINGS AND EXCEPTIONS In this section, we show the correlation between selected bug detectors and the exceptions that would likely correspond to the faults identified by these detectors  ... 
doi:10.1145/1082983.1083149 fatcat:udlvos6n6bfmfcowjpo4nodhua

Detecting argument selection defects

Andrew Rice, Edward Aftandilian, Ciera Jaspan, Emily Johnston, Michael Pradel, Yulissa Arroyo-Paredes
2017 Proceedings of the ACM on Programming Languages  
Higher thresholds increase precision, giving a true positive rate of 85%, reporting 459 true positives and 78 false positives.  ...  We evaluate our algorithm at Google on 200 million lines of internal code and 10 million lines of predominantly open-source external code and find defects even in large, mature projects such as OpenJDK  ...  ACKNOWLEDGMENTS This work was supported by the German Federal Ministry of Education and Research and by the Hessian Ministry of Science and the Arts within "CRISP", by the German Research Foundation within  ... 
doi:10.1145/3133928 dblp:journals/pacmpl/RiceAJJPA17 fatcat:aa5zbdndjjecnailq32fudpewy

The SoftWipe tool and benchmark for assessing coding standards adherence of scientific software

Adrian Zapletal, Dimitri Höhler, Carsten Sinz, Alexandros Stamatakis
2021 Scientific Reports  
Therefore, we have developed an open source tool and benchmark called , that provides a relative software coding standards adherence ranking of 48 computational tools from diverse research areas. can be  ...  used in the review process of software papers and to inform the scientific software selection process.  ...  We wish to thank Bernd Doser for initial discussions on SoftWipe, Benoit Morel for contributing the avoided bug in GeneRax, and Frédéric Mahé for useful comments on this manuscript.  ... 
doi:10.1038/s41598-021-89495-8 pmid:33976324 fatcat:jte64dqpyredbh5fk5vy47jgcy
« Previous Showing results 1 — 15 out of 1,148 results