Google
 
   
Login
Username:

Password:


Lost Password?

Register now!
Search

Advanced Search
Main Menu
top books
Polls
What do you think about php-deluxe.net?
Excellent!
Cool
Hmm..not bad
What the hell is this?
encyclopedia
MakeIndex
StepMania
Simply connected space
Internet security
Function point analysis
OneLook
Perihelion Software
recommendation
compare webbrowser
Freenet DSL
Who's Online
4 user(s) are online (2 user(s) are browsing encyclopedia)

Members: 0
Guests: 4

more...
browser tip
Unix Befehle
manual of unix befehle
recommendation!
Sponsored
partner

Code review

Code review is Peer_review of computer source code intended to find and fix mistakes overlooked in the initial development phase, improving overall Code quality. Code reviews can often find and remove common Software security vulnerability such as format string attacks, race conditions, and buffer overflows, thereby improving software security. Online software repositories, like anonymous Concurrent Versions System, allow groups of individuals to collaboratively review code to improve software quality and security.

Code review is a valuable part of the software development process often called testing . Some argue that code review is less important when certain rules or secure coding methodologies are followed from the software s inception.

The Extreme Programming (XP) approach includes the practice of pair programming, which can be argued to be code review during development. XP proponents argue that other XP practices, such as Refactoring and creating tests before even writing the code, produces code that doesn t need to be reviewed or rewritten as often and thus speeds software development.

There are many examples of how code review improved a project. They include *Blender_(program) - A 3D graphics design package greatly improved by an open source development community. *The Linux Kernel - Once a hobby project written by a Finnish student programmer is now reviewed and improved by hundreds of programmers worldwide.

Automated code reviewing software lessens the task of reviewing large chunks of code on the developer by systematically checking source code for vulnerabilities such as: *race conditions *format string attackss *buffer overflows *memory leak

Flawfinder and Rough Auditing Tool for Security (RATS) are two well-known examples of code reviewing software.

=See also=

*Introspection *Memory debugger *Profiler *Software inspection *Static code analysis *Test coverage

=External links=

*[http://www.macadamian.com/codereview.htm Code Review Checklist] *[http://www.codehistorian.com/codereviewer-overview.php Code Review Software] *[http://www.dwheeler.com/flawfinder/ Flawfinder] *[http://www.securesoftware.com/download_rats.htm R.A.T.S] *[http://www.homeport.org/~adam/review.html Security Code Review Guidelines] *[http://www.activsoftware.com/codereview/ Code Review Tool for ColdFusion]