Why don´t software developers use static analysis tools to find bugs?

Author

Johnson, Bryant ; Yoonki Song ; Murphy-Hill, Emerson ; Bowdidge, Robert

Author_Institution

North Carolina State Univ., Raleigh, NC, USA

fYear

2013

fDate

18-26 May 2013

Firstpage

672

Lastpage

681

Abstract

Using static analysis tools for automating code inspections can be beneficial for software engineers. Such tools can make finding bugs, or software defects, faster and cheaper than manual inspections. Despite the benefits of using static analysis tools to find bugs, research suggests that these tools are underused. In this paper, we investigate why developers are not widely using static analysis tools and how current tools could potentially be improved. We conducted interviews with 20 developers and found that although all of our participants felt that use is beneficial, false positives and the way in which the warnings are presented, among other things, are barriers to use. We discuss several implications of these results, such as the need for an interactive mechanism to help developers fix defects.

Keywords

interactive systems; program debugging; program diagnostics; software quality; automatic code inspection; bug detection; false positives; interactive mechanism; software defects; software development; software engineering; static analysis tools; Companies; Computer bugs; Encoding; Interviews; Software; Standards; Teamwork;

fLanguage

English

Publisher

ieee

Conference_Titel

Software Engineering (ICSE), 2013 35th International Conference on

Conference_Location

San Francisco, CA

Print_ISBN

978-1-4673-3073-2

Type

conf

DOI

10.1109/ICSE.2013.6606613

Filename

6606613