Archive | September, 2010

PyChecker: a python source code checking tool

PyChecker is a tool for finding bugs in python source code. It finds problems that are typically caught by a compiler for less dynamic languages, like C and C++. It is similar to lint. Because of the dynamic nature of python, some warnings may be incorrect; however, spurious warnings should be fairly infrequent.
(Link: PyChecker: a python source code checking tool)

PyChecker: Finding Bugs in Other People's Programs

What PyChecker Does

Currently PyChecker produces four different categories of warnings:

Likely Bugs
Potential Bugs
Unused Identifiers
Code Complexity/Style
(Link: PyChecker: Finding Bugs in Other People’s Programs)

OWASP python-static-analysis

prototyped taint-style static analysis for Python web applications. This tool is based on Pixy project. It is able to find input validation security vulnerabilities in Python-based web applications. This tool is currently in alfa release. It supports limited subset of Python: functions, modules, classes and data structures, but not generators, comprehensions, lambda-functions etc. And it has support only mod_python web applications.
(Link: OWASP python-static-analysis)

django-lint – Statically check Django applications « code « lamby

Django Lint is a static analysis tool that checks (or “lints”) projects and applications that use the Django web development framework.

It reports on common programming errors and bad code smells, including checking for nullable CharField field types, the use of brittle or deprecated Django features (such as auto_now_add) as well as the absence of recommended options in settings.py. It aims to encourage the development of high-quality re-usable Django applications.
(Link: django-lint – Statically check Django applications « code « lamby)

RATS – Rough Auditing Tool for Security – Fortify Software

RATS – Rough Auditing Tool for Security – is an open source tool developed and maintained by Secure Software security engineers. Secure Software was acquired by Fortify Software, Inc. RATS is a tool for scanning C, C++, Perl, PHP and Python source code and flagging common security related programming errors such as buffer overflows and TOCTOU (Time Of Check, Time Of Use) race conditions.
(Link: RATS – Rough Auditing Tool for Security – Fortify Software)

Current Operating Systems May Only Make Sense Up To 48 Cores | ConceivablyTech

Adding cores to the CPU has become the general recipe to ensure performance improvements in modern computers, even if we have heard before than the IT industry will face efficiency problems beyond 16 cores. New research published by MIT now suggests that the industry will be running into a soft wall when 48 cores are reached and new operating system architectures may be required.
(Link: Current Operating Systems May Only Make Sense Up To 48 Cores | ConceivablyTech)

All Unix commands sorted by votes | commandlinefu.com

commandlinefu.com is the place to record those command-line gems that you return to again and again.
Delete that bloated snippets file you’ve been using and share your personal repository with the world. That way others can gain from your CLI wisdom and you from theirs too. All commands can be commented on, discussed and voted up or down.
(Link: All Unix commands sorted by votes | commandlinefu.com)

pylint- analyzes Python source code looking for bugs and signs of poor quality

analyzes Python source code looking for bugs and signs of poor quality.
Pylint is a python tool that checks if a module satisfies a coding standard. Pylint is similar to PyChecker but offers more features, like checking line-code’s length, checking if variable names are well-formed according to your coding standard, or checking if declared interfaces are truly implemented, and much more (see the complete check list).
(Link: pylint- analyzes Python source code looking for bugs and signs of poor quality)

JavaNCSS – A Source Measurement Suite for Java

Features and Metrics JavaNCSS Provides

Metrics can be applied to global-, class-, or function-level.
Non Commenting Source Statements (NCSS).
Cyclomatic Complexity Number (McCabe metric).
Packages, classes, functions and inner classes are counted.
Number of formal Javadoc comments per class and method.
Average values are calculated.
Command line driven.
A GUI is provided for better output browsing as well as the integration of JavaNCSS in a project manager and class browser named Jacob for easy selection of input source files.
XML output (optional).
XSLT stylesheets provided for further generation of HTML, and SVG reports and as a basis for your own custom reports.
Ant task (written by Steve Jernigan).
Support for Java 1.5 syntax (generics, enums, etc.).
100% Pure Java.
Free software (GNU GPL).
(Link: JavaNCSS – A Source Measurement Suite for Java)

JDepend – measure the quality of a design

JDepend traverses Java class file directories and generates design quality metrics for each Java package. JDepend allows you to automatically measure the quality of a design in terms of its extensibility, reusability, and maintainability to manage package dependencies effectively.
(Link: JDepend – measure the quality of a design)