Sökning: onr:"swepub:oai:DiVA.org:kth-323274" >
Sorald :
Sorald : Automatic Patch Suggestions for SonarQube Static Analysis Violations
-
- Etemadi, Khashayar (författare)
- KTH,Teoretisk datalogi, TCS
-
- Harrand, Nicolas (författare)
- KTH,Programvaruteknik och datorsystem, SCS
-
- Larsén, Simon (författare)
- KTH,Teoretisk datalogi, TCS
-
visa fler...
-
- Adzemovic, Haris (författare)
- KTH,Teoretisk datalogi, TCS
-
- Luong Phu, Henry (författare)
- KTH,Teoretisk datalogi, TCS
-
- Verma, Ashutosh (författare)
- Compute Science, IIT Bombay, 29491 Mumbai, Maharashtra, India
-
- Madeiral, Fernanda (författare)
- KTH,Teoretisk datalogi, TCS
-
- Wikström, Douglas, 1975- (författare)
- KTH,Teoretisk datalogi, TCS
-
- Monperrus, Martin (författare)
- KTH,Teoretisk datalogi, TCS
-
visa färre...
-
(creator_code:org_t)
- Institute of Electrical and Electronics Engineers (IEEE), 2022
- 2022
- Engelska.
-
Ingår i: IEEE Transactions on Dependable and Secure Computing. - : Institute of Electrical and Electronics Engineers (IEEE). - 1545-5971 .- 1941-0018. ; , s. 1-1
- Relaterad länk:
-
https://doi.org/10.1...
-
visa fler...
-
https://urn.kb.se/re...
-
https://doi.org/10.1...
-
visa färre...
Abstract
Ämnesord
Stäng
- Previous work has shown that early resolution of issues detected by static code analyzers can prevent major costs later on. However, developers often ignore such issues for two main reasons. First, many issues should be interpreted to determine if they correspond to actual flaws in the program. Second, static analyzers often do not present the issues in a way that is actionable. To address these problems, we present Sorald: a novel system that uses metaprogramming templates to transform the abstract syntax trees of programs and suggests fixes for static analysis warnings. Thus, the burden on the developer is reduced from interpreting and fixing static issues, to inspecting and approving full fledged solutions. Sorald fixes violations of 10 rules from SonarJava, one of the most widely used static analyzers for Java. We evaluate Sorald on a dataset of 161 popular repositories on Github. Our analysis shows the effectiveness of Sorald as it fixes 65% (852/1,307) of the violations that meets the repair preconditions. Overall, our experiments show it is possible to automatically fix notable violations of the static analysis rules produced by the state-of-the-art static analyzer SonarJava.
Ämnesord
- NATURVETENSKAP -- Data- och informationsvetenskap -- Datavetenskap (hsv//swe)
- NATURAL SCIENCES -- Computer and Information Sciences -- Computer Sciences (hsv//eng)
Nyckelord
- automatic program repair
- Codes
- Computer bugs
- Java
- Maintenance engineering
- metaprogramming
- Software development management
- Static analysis
- Static code analysis
- Syntactics
- Codes (symbols)
- Computer software
- Java programming language
- Program debugging
- Repair
- Software design
- Trees (mathematics)
- Automatic programs
- Code
- Meta Programming
- Static analyzers
- Static codes
Publikations- och innehållstyp
- ref (ämneskategori)
- art (ämneskategori)
Hitta via bibliotek
Till lärosätets databas