Hacker News new | past | comments | ask | show | jobs | submit login

I conformed to MISRA C:2012 for an open source project and what's unfortunate is the lack of open source static analyzers for verifying MISRA compliance. Aside from Cppcheck [1] all other analyzers I found are commercial/proprietary. It's surprising because Clang should make writing an analyzer easier than ever.

[1] https://cppcheck.sourceforge.io/misra.php




Clang has its own limitations. And it takes more effort than just writing the checkers. We open sourced our previously proprietary static analyzer (mostly based on Clang but also integrated other useful tools) but the commercial/enterprise edition still has its own value in stability, quality assurance, and technical support. It's more like building a Linux distro (e.g. RHEL) from various FOSS components.


Isn't the most likely reason that no FOSS tools support it that it's not an open standard?




Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: