Next generation development testing platform flags high risk code changes

October 03, 2012 // By Nick Flaherty
Coverity has launched the next generation of its Development Testing Platform, an integrated suite of software testing technologies for identifying and correcting critical quality and security issues during development.

The Coverity Test Advisor includes patent pending innovations for change impact analysis to focus unit testing on high risk code, including changed code and code impacted by a change, alerting developers of code not covered by unit tests.
Time to market demands have increased the speed of development and the rate of change. Traditional unit testing, while valuable, has been inefficient, failing to focus squarely on critical parts of the code and lacking insight into change impact. Technology to enable development testing must sufficiently cover the risk areas in the code, including intelligence into code change without slowing down development.
The Development Testing Platform helps manage the risk of change while accelerating time to market through intelligent code and test analysis as Coverity has extended its Static Analysis Verification Engine (Coverity SAVE), built on multiple patents for accurate and scalable techniques in defect detection. This includes new analysis innovations such as the Change Impact Analysis that ensures code changes are sufficiently tested by automatically mapping code and function dependencies to analyze impacted code related to a change — both code that has been directly modified and unmodified code that is impacted by the code change.
It also includes intelligent Java quality and security analysis to identify critical quality and security issues through enhanced quality analysis and new security analysis for Java web applications, including an enterprise framework analyzer which augments static source code analysis to identify new types of defects and minimize false positives.
Coverity also provides developers with accurate and actionable information to fix quality defects, security defects, test violations and third party analysis defects in a unified workflow. The platform includes a patent pending remediation engine that gives developers precise, defect-specific guidance to help them fix security defects correctly and efficiently, without specialized knowledge.
The new release also includes Common Weakness Enumeration (CWE) Compatibility and an open API so that companies can integrate third-party software analysis results into