[postgis-devel] Static Analysis
Sandro Santilli
strk at keybit.net
Thu May 5 15:20:07 PDT 2016
On May 5, 2016 8:06:42 PM CEST, Paul Ramsey <pramsey at cleverelephant.ca> wrote:
>Hey Devs,
>
>Are we interested in receiving static analysis reports (Coverity) on
>the PostGIS code base?
>
>The folks at CrunchyData are willing to stick-handle the bureaucracy
>around getting Coverity account for the project and a system set up to
>regularly pass the PostGIS code base through Coverity static analysis.
>Coverity provides free (as in beer) accounts for open source projects,
>so the actual Coverity "account" would be the PostGIS project's and
>the PSC would control it.
>
>Anyways, other than providing an annoying list of things we should do
>(gah!) I see no downside to having some more information on our code
>cleanliness/security. Unlike the transifex stuff, there'd be no
>dependencies on a foreign system, since if Coverity ever shut off our
>access we'd be no worse off than we are right now.
>
>Thoughts?
>
>P
>_______________________________________________
>postgis-devel mailing list
>postgis-devel at lists.osgeo.org
>http://lists.osgeo.org/mailman/listinfo/postgis-devel
+1
--strk;
Sent from device with lame keyboard. Please excuse my brevity.
More information about the postgis-devel
mailing list