Title | An Empirical Assessment on Merging and Repositioning of Static Analysis Alarms |
Publication Type | Conference Paper |
Year of Publication | 2022 |
Authors | Mansoor, Niloofar, Muske, Tukaram, Serebrenik, Alexander, Sharif, Bonita |
Conference Name | 2022 IEEE 22nd International Working Conference on Source Code Analysis and Manipulation (SCAM) |
Date Published | oct |
Keywords | C language, codes, composability, empirical study, Human Behavior, Inspection, Manual inspection of alarms, Manuals, merging, pubcrawl, Repositioning of alarms, Resiliency, source coding, static analysis, static code analysis |
Abstract | Static analysis tools generate a large number of alarms that require manual inspection. In prior work, repositioning of alarms is proposed to (1) merge multiple similar alarms together and replace them by a fewer alarms, and (2) report alarms as close as possible to the causes for their generation. The premise is that the proposed merging and repositioning of alarms will reduce the manual inspection effort. To evaluate the premise, this paper presents an empirical study with 249 developers on the proposed merging and repositioning of static alarms. The study is conducted using static analysis alarms generated on \$C\$ programs, where the alarms are representative of the merging vs. non-merging and repositioning vs. non-repositioning situations in real-life code. Developers were asked to manually inspect and determine whether assertions added corresponding to alarms in \$C\$ code hold. Additionally, two spatial cognitive tests are also done to determine relationship in performance. The empirical evaluation results indicate that, in contrast to expectations, there was no evidence that merging and repositioning of alarms reduces manual inspection effort or improves the inspection accuracy (at times a negative impact was found). Results on cognitive abilities correlated with comprehension and alarm inspection accuracy. |
DOI | 10.1109/SCAM55253.2022.00031 |
Citation Key | mansoor_empirical_2022 |