| Title | Dynamic Filtering and Prioritization of Static Code Analysis Alerts |
| Publication Type | Conference Paper |
| Year of Publication | 2021 |
| Authors | Yüksel, Ulaş, Sözer, Hasan |
| Conference Name | 2021 IEEE International Symposium on Software Reliability Engineering Workshops (ISSREW) |
| Keywords | Automation, Code reviews, codes, composability, Conferences, Filtering, Human Behavior, knowledge based systems, Performance analysis, processing alarms/warnings/alerts, program analysis, Prolog, pubcrawl, Resiliency, software reliability, static code analysis |
| Abstract | We propose an approach for filtering and prioritizing static code analysis alerts while these alerts are being reviewed by the developer. We construct a Prolog knowledge base that captures the data flow information in the source code as well as the reported alerts, their properties and associations with the data flow. The knowledge base is updated as the developer reviews the listed alerts and decides whether they point at an actual fault or not. These updates provide useful information since some of the alerts of the same type can be related in terms of their root cause. Hence, dynamically updated knowledge base can be queried to eliminate or prioritize the remaining alerts in the review list. We present a motivating example to illustrate the approach and its automation by integrating a set of tools. |
| DOI | 10.1109/ISSREW53611.2021.00086 |
| Citation Key | yuksel_dynamic_2021 |
Dynamic Filtering and Prioritization of Static Code Analysis Alerts