Using Static Checkers

Let's learn about utilities that can understand program source code in order to perform static analysis.

We'll cover the following

Integrating static checkers with CMake
Try it yourself

Static program analysis is the process of checking the source code without actually running the compiled version. The rigorous application of static checkers dramatically improves the quality of the code: it becomes more consistent and less bug-prone. The chance of introducing known security vulnerabilities is reduced too.

Integrating static checkers with CMake

The C++ community has created dozens of static checkers: Astrée, Clang-Tidy, CLazy, CMetrics, Cppcheck, Cpplint, CQMetrics, ESBMC, FlawFinder, Flint, IKOS, Joern, PC-Lint, Scan-Build, Vera++, and so on.

Get hands-on with 1400+ tech skills courses.

Introduction to the Course

First Steps with CMake

The CMake Language

Setting Up Our First CMake Project

Working with Targets

Compiling C++ Sources with CMake

Linking with CMake

Modern CMake for C++ Exam 1

Managing Dependencies with CMake

Testing Frameworks

Program Analysis Tools

Generating Documentation

Installing and Packaging

Creating Our Professional Project

Conclusion

Appendix

Using Static Checkers

Integrating static checkers with CMake