Take Advantage of Code Analysis Tools

最新推荐文章于 2024-04-15 18:45:00 发布
转载 最新推荐文章于 2024-04-15 18:45:00 发布 · 436 阅读 · 0
文章标签:

#habit #programer

本文探讨了在软件开发过程中,除了测试之外,如何利用分析工具提高代码质量。详细介绍了静态分析工具的发展历史、现状及使用方法,包括它们如何帮助开发者检测潜在错误、风格违规和复杂性问题,并提供了配置高级静态分析工具的建议。

The value of testing is something that is drummed into software developers from the early stages of their programming journey. In recent years the rise of unit testing, test-driven development, and agile methods has seen a surge of interest in making the most of testing throughout all phases of the development cycle. However, testing is just one of many tools that you can use to improve the quality of code.

Back in the mists of time, when C was still a new phenomenon, CPU time and storage of any kind were at a premium. The first C compilers were mindful of this and so cut down on the number of passes through the code they made by removing some semantic analyses. This meant that the compiler checked for only a small subset of the bugs that could be detected at compile time. To compensate, Stephen Johnson wrote a tool calledlint — which removes the fluff from your code — that implemented some of the static analyses that had been removed from its sister C compiler. Static analysis tools, however, gained a reputation for giving large numbers of false-positive warnings and warnings about stylistic conventions that aren't always necessary to follow.

The current landscape of languages, compilers, and static analysis tools is very different. Memory and CPU time are now relatively cheap, so compilers can afford to check for more errors. Almost every language boasts at least one tool that checks for violations of style guides, common gotchas, and sometimes cunning errors that can be difficult to catch, such as potential null pointer dereferences. The more sophisticated tools, such as Splint for C or Pylint for Python, are configurable, meaning that you can choose which errors and warnings the tool emits with a configuration file, via command line switches, or in your IDE. Splint will even let you annotate your code in comments to give it better hints about how your program works.

If all else fails, and you find yourself looking for simple bugs or standards violations which are not caught by your compiler, IDE, or lint tools, then you can always roll your own static checker. This is not as difficult as it might sound. Most languages, particularly ones branded dynamic, expose their abstract syntax tree and compiler tools as part of their standard library. It is well worth getting to know the dusty corners of standard libraries that are used by the development team of the language you are using, as these often contain hidden gems that are useful for static analysis and dynamic testing. For example, the Python standard library contains a disassembler which tells you the bytecode used to generate some compiled code or code object. This sounds like an obscure tool for compiler writers on the python-dev team, but it is actually surprisingly useful in everyday situations. One thing this library can disassemble is your last stack trace, giving you feedback on exactly which bytecode instruction threw the last uncaught exception.

So, don't let testing be the end of your quality assurance — take advantage of analysis tools and don't be afraid to roll your own.


By Sarah Mount

This work is licensed under a Creative Commons Attribution 3

hellominix
关注
A Survey on Deep Learning Techniques Applied to medical image analysis
AI天才研究院
08-13 669
作者:禅与计算机程序设计艺术 Introduction:Deep learning techniques have recently gained popularity in medical image analysis because they are capable of accurately identifying disease markers without relying on human intervention, enabling better decision-making and tre
Analysis, visualization, and integration of spatial datasets with Seurat空间转录组空转
生信小博士的博客
12-27 1148
Analysis, visualization, and integration of spatial datasets with Seurat Compiled: 2021-08-30 Source: vignettes/spatial_vignette.Rmd Overview This tutorial demonstrates how to use Seurat (>=3.2) to analyze spatially-resolved RNA-seq data. While the anal
Looking for the Best Lightweight Data Analysis Script Tools
rqgxy的博客
07-22 368
A lightweight desktop script tool is a must-have for data analysts. But how do you know which is the most suitable one? Let me walk you through four top script tools to experience and compare their usability, dev efficiency, types of supported data sources
Opentelemetry——Instrumentation-Code-based
方亮的专栏
04-15 751
您在此处选择的名称应该精确表达正在检测的具体内容—— 例如,如果您正在编写一个库,那么您应该以您的库命名它(例如 com.example.myLibrary),因为该名称将为所有生成的Span或Metric Events提供命名空间。进程内导出数据要求您引入并依赖一个或多个导出器、库,这些库将 OpenTelemetry 的内存中Span和Metric对象转换为适合遥测数据分析工具(如 Jaeger 或 Prometheus)需要的格式。如果您的操作对象是独立的进程或服务,那么您将依赖API和SDK。
Don't Waste Time on Code Reviews
高效软件开发
09-09 5519
Less than half of development teams do code reviews and the other half are probably not getting as much out of code reviews as they should.Here’s how to not waste time on code reviews.Keep it SimpleMa
Analysis of Haswell’s Transactional Memory
carltraveler的专栏
10-18 996
原著:David Kanter 原名:Analysis of Haswell’s Transactional Memory 原文:http://www.realworldtech.com/haswell-tm/ 翻译:CoryXie 附上原文: Two of my personal areas of interest and expertise are speculativ
Large-Scale and Language-Oblivious Code Authorship Identification
至臻求学,胸怀云月
10-23 1182
摘要 Eicient extraction of code authorship attributes is key for suc- cessful identiication. However, the extraction of such attributes is very challenging, due to various programming language speciics,...
CodeMirror 小册子
weixin_30411239的博客
11-16 1466
User manual and reference guide version 5.41.1 用户手册和参考指南 CodeMirror is a code-editor component that can be embedded in Web pages. The core library providesonlythe editor component, no acco...
Discover data analysis
u011868279的博客
03-21 1013
Introduction As a data analyst, you are on a journey. Think about all the data that is being generated each day and that is available in an organization, from transactional data in a traditional database, telemetry data from services that you use, to sign
Practical Data Analysis
06-05
This book contains practical projects that take advantage of the MongoDB, D3.js, and Python language and its ecosystem to present the concepts using code snippets and detailed descriptions. 本pdf仅...
PyCharm Python Version Management and Code Refactoring: Analysis of Refactoring Issues Caused by ...
# Introduction to PyCharm's ...PyCharm is a powerful integrated development environment (IDE) for Python that offers comprehensive version control features to help developers manage and track code cha
pro-3896-master.zip
最新发布
12-26
pro-3896-master.zip
ACM算法竞赛资料快速求树中与结点x距离不超过k的点权和
12-26
ACM-ICPC/CCPC/XCPC算法竞赛资料快速求树中与结点x距离不超过k的点权和
ACM-ICPC/CCPC/XCPC算法竞赛资料排列组合枚举
12-26
ACM-ICPC/CCPC/XCPC算法竞赛资料排列组合枚举
Python语言程序设计第五章作业
12-26
先展示下效果 https://pan.quark.cn/s/9f90bcd2b9e8 ProxyPool Build Status 跨语言高性能IP代理池,Python实现。 注意:请运行程序前先更新一下抓取代理的爬虫。 运行环境 Python 3.6 (请务必保证Python的版本在3.6以上,否则异步检验无法使用。 ) Redis Redis官网并没有提供Windows的安装版,Windows用户可以点击此处下载一个我自己编译的二进制版本(3.2版本2.7MB,VS 2015编译)。 安装 ① 直接使用 安装依赖 Windows用户如果无法安装lxml库请点击这里。 打开代理池和API ② 安装使用 安装 打开代理池和API 使用API获取代理 访问进入主页,如果显示'Welcome',证明成功启动。 pic 访问可以获取一个可用代理。 pic 访问可以获取代理池中可用代理的数量。 pic 也可以在程序代码中用相应的语言获取,例如: 文件结构 picture picture
基于Transformer架构的金融时间序列预测与量化交易策略研究项目_该项目核心是一个利用深度学习Transformer模型对金融市场时间序列数据进行建模和预测的系统通过PVO.zip
12-26
基于Transformer架构的金融时间序列预测与量化交易策略研究项目_该项目核心是一个利用深度学习Transformer模型对金融市场时间序列数据进行建模和预测的系统通过PVO.zip
JUnit测试用例实战演练
12-26
下载前可以先看下教程 https://pan.quark.cn/s/a5097cd684d7 [![][Logo]][ Repository] Build Status badge-jdk License badge Support badge Twitter Follow This repository contains the code examples of [JUnit 5] for the book [Mastering Software Testing with JUnit 5: Comprehensive guide to develop high quality Java applications], authored by [Boni García] and published by [Packt]. [![][Cover]][Packt] These examples cover the main features of JUnit 5, such as: JUnit 5 tests lifecycle. Assertions. Tagging and filtering tests. Conditional test execution. Nested and repeated tests. Migration from JUnit 4. Dependency injection. Dynamic tests. Test interfaces. Test templates. Parameterized tests. Parallel execution. Ordered tests. Moreover, the integration with ...
基于EEMD-GRU的猪舍二氧化碳浓度预测模型研究_这是一个专注于精准农业与环境监测的机器学习项目旨在通过先进的信号处理与深度学习技术对规模化养猪场内的关键环境指标进行高精度时.zip
12-26
基于EEMD-GRU的猪舍二氧化碳浓度预测模型研究_这是一个专注于精准农业与环境监测的机器学习项目旨在通过先进的信号处理与深度学习技术对规模化养猪场内的关键环境指标进行高精度时.zip
To take advantage of the latest features, improvements and fixes, we recommend that you upgrade this project's Android Gradle Plugin from 7.4.2 to 8.11.0.
09-09
<think> 引用内容提示用户遇到了AGP版本不兼容的错误,但用户实际需求是将AGP从7.4.2升级到8.11.0。需要区分引用中的错误信息(AGP 8.9.0不兼容)和用户的实际需求(7.4.2→8.11.0)是不同的场景。 用户明确要求查找升级方法,因此核心是提供完整的升级路径。由于大版本升级(7.x→8.x)涉及破坏性变更,需分步骤处理: 1. **检查环境要求**:AGP 8.x需要JDK 17+和Android Studio Flamingo(2022.2.1)+,需先确认开发环境满足条件。 2. **逐步升级**:直接跨大版本升级易出错,建议按7.4.2→7.5→8.0→8.1→8.2的顺序渐进升级,每个中间版本都需处理兼容性问题。 3. **关键变更点**: - Gradle版本依赖:AGP 8.11要求Gradle 8.5+(引用中未提及,但属于必要知识) - 命名空间替代applicationId:AndroidManifest中的package需迁移到build.gradle的namespace - 废弃API替换:如compileSdkVersion改为compileSdk 4. **测试验证**:升级后必须执行./gradlew check --scan生成构建扫描报告,可检测废弃API使用情况。 需特别注意引用中提到的"AGP 8.9.0不兼容"是特定环境问题,但用户目标版本8.11.0已修复该问题。应在回答中说明跳过有问题的中间版本(如8.9.0)直接到8.11.0的可行性。 最后应强调回退方案:若升级失败可通过本地.properties文件强制降级(如设置android.overridePathCheck=true),但仅作临时措施。 </think> 要将项目的Android Gradle插件(AGP)从7.4.2升级到8.11.0,请按照以下步骤操作(注意:大版本升级存在兼容性风险,建议在版本控制下操作): ### 升级步骤 1. **检查环境要求** - 升级Android Studio至最新稳定版(至少2023.2.1 Hedgehog+) - 确认JDK版本 ≥ 17(在终端运行 `java -version` 验证) - Gradle Wrapper版本需 ≥ 8.5(AGP 8.11要求) 2. **修改项目级配置** 在根目录的 `build.gradle` 或 `build.gradle.kts` 中: ```groovy buildscript { dependencies { // 修改此行 classpath "com.android.tools.build:gradle:8.1.1" // → 改为8.1.1 } } ``` 3. **更新模块级配置** 在模块的 `build.gradle` 中: ```groovy android { // 必须添加以下配置 namespace "com.your.package" // 替代AndroidManifest的packageName compileSdk = 34 // 必须 ≥ 34 (Android 14) buildFeatures { buildConfig = true // AGP 8.x默认关闭需显式启用 } } ``` 4. **升级Gradle Wrapper** - 修改 `gradle/wrapper/gradle-wrapper.properties`: ```properties distributionUrl=https\://services.gradle.org/distributions/gradle-8.5-bin.zip ``` - 终端执行:`./gradlew wrapper --gradle-version=8.5` 5. **处理破坏性变更** - 替换废弃API: - `compileSdkVersion 34` → `compileSdk 34` - `targetSdkVersion 34` → `targetSdk 34` - 移除 `buildToolsVersion`(AGP 8.x自动管理) - 迁移清单配置: ```groovy androidComponents { onVariants(selector().all()) { variant -> variant.manifestPlaceholders.put("appLabel", "MyApp") } } ``` 6. **验证升级** - 执行清理构建:`./gradlew clean assembleDebug` - 检查警告:运行 `./gradlew lint` 处理兼容性警告 - 测试核心功能:重点验证安装、推送、深链接等涉及包名的功能 ### ⚠️ 注意事项 1. **渐进升级建议**(降低风险): ``` 7.4.2 → 7.5 → 8.0.2 → 8.1.1 → 8.2.2 → 8.3.0 → 8.4.0 → 8.11.0 ``` 每个中间版本升级后执行 `./gradlew check` 2. **常见问题解决**: - 包名冲突:在 `android` 块添加 `namespace = "com.your.actual.package"` - 依赖错误:第三方库需更新到兼容AGP 8.x的版本 - 构建失败:检查是否包含过时的DSL如 `packagingOptions.excludes` 3. **回退方案**: - 若遇到不可解决的问题,在 `gradle.properties` 添加临时回退: ``` android.overridePathCheck=true // 允许降级[^1] ``` > 升级后建议使用Android Studio的 **Refactor > Migrate to AGP 8.x** 工具自动修复部分兼容性问题。
评论
成就一亿技术人!
拼手气红包6.0元
还能输入1000个字符
 
红包 添加红包
表情包 插入表情
表情包 代码片
 条评论被折叠 查看
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值