PVS-Studio

PVS-Studio Go analyzer beta testing After months of extensive work on a new static code analyzer for Go, our team announces that it′s now ready for public testing. Join the Early Access Program to be among the first to test. Here′s how.

The Early Access Program for PVS-Studio Go analyzer is now available!
Support for GoLand, dozens of new diagnostic rules, and more.
Our developers prepared a short note with the details — take a look and join the EAP!

#Go #Golang #DevTools #Development

#programming #memes

^ != << In some languages, the ′^′ operator can be used for exponentiation, but in other popular development stacks, it operates as the exclusive OR (XOR) operator. Today, we′ll discuss how this confusion...

🐻‍❄️ As we announced before, we opened the Early Access Program for the Go static analyzer. Now it’s time to show you how our "newcomer" deals with a simple yet so noisy and pesky error that occurs due to the operator XOR.

#Go #Golang #SAST #Development #CodeErrors

Early Access Program for PVS-Studio We are launching the Early Access Program (EAP) for new PVS-Studio products. You may choose what interests you, be among the first to test new features, and help shape the products′ future.

The Early Access Program for new PVS-Studio products is now open.
Be among the first to try upcoming static analyzers for JavaScript and Go, and explore the PVS-Studio Atlas platform.

📌Join the program now and start testing on April 6.
#Go #JavaScript #Release #EAP

Integrating SAST into DevSecOps As software delivery accelerates, security must move at the same speed. In this webinar, we’ll explore how to effectively integrate Static Application Security Testing (SAST) into your DevSecOps pipel...

🗓️ New webinar! Integrate SAST into DevSecOps.

In this session, you will learn how to:
- integrate SAST into your DevSecOps pipeline seamlessly
- identify vulnerabilities early in the SDLC
- build more secure code, faster

Date: March 19, 2:00 PM UTC+1
#Webinar #DevSecOps #DevOps #Cybersecurity

Comments that outlived errors Many static analyzers enable suppressing individual warnings directly in code via special comments. Over time, the number of such comments in projects increases. Some of them lose their relevance yet....

Old suppressed warnings in static analyzers are like dusty magnets on a fridge—they just sit there long after becoming irrelevant.

Our new pvs-fp-cleaner tool automatically detects redundant false alarm markers. We tested it on real projects and wrote about it

#DevTool #StaticAnalysis #Development

#programming #memes

Brave new C# Next month, another version of our beloved programming language is set to arrive. Nice reason to grab a cup of coffee and dwell on what is wrong with modern versions of C#, isn′t it?

What if your beloved C# evolves in a way the community doesn’t expect? We’ve invited an author to our blog to share his thoughts on the new features: are they a blessing or a curse? What do you think?

Share your opinion in the comments!

pvs-studio.com/en/blog/post...

#csharp #dotnet #programming

PVS-Studio 7.41: MISRA C 2023, enhanced Unreal Engine integration, new logging system, and much more PVS-Studio 7.41 has been released. It brings improvements for Unreal Engine, support for MISRA C 2023, an update to the IntelliJ IDEA plugin, and other useful changes. See more details in this note.

PVS-Studio 7.41 has been released. It brings improvements for Unreal Engine, support for MISRA C 2023, an update to the IntelliJ IDEA plugin, and other useful changes. See more details in this note.

Silent foe or quiet ally: Brief guide to alignment in C++. Part 2 It seems like we′ve already revealed the secret of alignment and defeated an invisible enemy—unaligned access. Memory is under control, but performance still whispers, Don′t forget about nuances...

It seems like we've already revealed the secret of alignment and defeated an invisible enemy—unaligned access. Memory is under control, but performance still whispers, "Don't forget about nuances." What nuances, huh?

Silent foe or quiet ally: Brief guide to alignment in C++ Imagine your program is a model of clean code—reviewed, tested, and seemingly flawless. But its performance still falls short of expectations. You′ve checked everything you know. Maybe you′ve...

Silent foe or quiet ally: Brief guide to alignment in C++ #cpp #programming

Vibe coding: Pros, cons, and 2026 forecasts from PVS-Studio The Collins English Dictionary named vibe coding as its Word of the Year 2025. This is no surprise: AI has fused so deeply with our routines that the developer community is still debating whether...

Vibe coding: Pros, cons, and 2026 forecasts from PVS-Studio
The Collins English Dictionary named "vibe coding" as its Word of the Year 2025. This is no surprise: AI has fused so deeply with our routines that the developer community is still debating whether it will replace human developers.

What′s new in PVS-Studio in 2025? The new year 2026 is already here, so it′s high time to look back on the exciting work the PVS-Studio team did in 2025. Settle in comfortably—our evening of reminiscence begins.

The new year 2026 is already here, so it's high time to look back on the exciting work the PVS-Studio team did in 2025. Settle in comfortably—our evening of reminiscence begins.

How to avoid losing your Minecraft server due to dangerous mods I′m sure many Minecraft server owners have experienced players trying to hack into their server and give themselves administrator privileges. Of course, such behavior isn′t limited to gaming, so I...

How to avoid losing your Minecraft server due to dangerous mods #gamedev #programming #minecraft

How do exceptions work in C++ on Linux? Our treasured language lets us leverage powerful tools and guard us from countless implementation details. Although exceptions have a bad name among many developers, a detailed analysis of how they...

Our treasured language lets us leverage powerful tools and guard us from countless implementation details. Although exceptions have a bad name among many developers, a detailed analysis of how they work can greatly expand your understanding of how C++ really works. That's what we'll do!

From experts to speakers: No pressure included There′s an amusing paradox: companies invest millions in strategy, products, and technologies, yet still underestimate one of the most powerful marketing tools—public speaking. Creating a great...

There's an amusing paradox: companies invest millions in strategy, products, and technologies, yet still underestimate one of the most powerful marketing tools—public speaking. Creating a great product is fantastic, but what's the point if no one is out there speaking for it?

What′s C++ like in gamedev? We invite you to read an article on how C++ is used in modern game development and why the industry is still not ready to move away from it. The author explores how C++ works at different levels of...

We invite you to read an article on how C++ is used in modern game development and why the industry is still not ready to move away from it. #cpp

Bugs in the Wild West: Top 10 C and C++ errors of 2025 All year long, we′ve been riding across the vast plains of open-source code, investigating crimes, taking out vulnerabilities, and collecting trophies. Today, we decided to step into the dustiest...

Bugs in the Wild West: Top 10 C and C++ errors of 2025 #cpp #errors

How to create your own Go static analyzer? Go developers regularly deal with warnings from the built-in static analyzer. But what if you need more features or want to find something specific in your project? Go provides powerful tools for...

Go developers regularly deal with warnings from the built-in static analyzer. But what if you need more features or want to find something specific in your project? Go provides powerful tools for parsing and analyzing code. #go #article #analyzer

Top 10 errors found in C# projects in 2025 Throughout 2025, the PVS-Studio team has been actively checking open-source C# projects. Over the year, we discovered plenty of defects. So, we picked the ten most interesting ones from this huge...

Throughout 2025, the PVS-Studio team has been actively checking open-source C# projects. Over the year, we discovered plenty of defects. So, we picked the ten most interesting ones from this huge variety. We hope you find this roundup interesting and useful. Enjoy!

Top 10 noteworthy Java errors in 2025 The year 2025 is coming to an end. Minecraft mods, the Catalan language, and non-obvious interactions with the ternary operator—how many things our analyzer has encountered! So it′s high time to...

The year 2025 is coming to an end. Minecraft mods, the Catalan language, and non-obvious interactions with the ternary operator—how many things our analyzer has encountered! So it's high time to share the highlights with you.

PVS-Studio 7.40: support for Visual Studio 2026, Qt Creator 18, .NET 10, updated C# diagnostic rules, and more PVS-Studio 7.40 has been released. The new version brings support for Visual Studio 2026 and Qt Creator 18, adds analysis of .NET 10 projects, enhances C# diagnostic rules, and includes many other...

PVS-Studio 7.40 has been released. The new version brings support for Visual Studio 2026 and Qt Creator 18, adds analysis of .NET 10 projects, enhances C# diagnostic rules, and includes many other new features. See more details in the note!

Roaming fields in search of potential vulnerabilities Analyzing source code is a challenging task, especially when it comes to identifying potential vulnerabilities. In this article, we′ll share how we traced data flow passing through object fields.

Analyzing source code is a challenging task, especially when it comes to identifying potential vulnerabilities. In this article, we'll share how we traced data flow passing through object fields.

Tomb of Java antiquities Java is expanding with new trendy mechanisms, and along with it, its tomb is growing with outdated features like Vector, Finalization, NashornScriptEngine, SecurityManager, and Unsafe. Let′s take a...

Java is expanding with new trendy mechanisms, and along with it, its tomb is growing with outdated features like Vector, Finalization, NashornScriptEngine, SecurityManager, and Unsafe. Let's take a look at these antiquities and see what has replaced them.

Bugs across the world′s languages. Let′s check LanguageTool In this article, we′ll look at traveling bugs that PVS-Studio static analyzer has detected in LanguageTool—a grammar, style, and spell checker.

In this article, we'll look at traveling bugs that PVS-Studio static analyzer has detected in LanguageTool—a grammar, style, and spell checker.

#programming #java

Checking osu! and exploring features of static analyzers Many developers know about static analysis tools. What practical benefits do they offer, and why do so many teams introduce them? This time, we′ll break down several key features of these tools by...

Many developers know about static analysis tools. What practical benefits do they offer, and why do so many teams introduce them? This time, we'll break down several key features of these tools by analyzing the source code of the osu! game. #gamedev #csharp

Open wide: Inspecting LLVM 21 with static analysis It has been over a year since the last check of the LLVM project with PVS-Studio, and in that time, two releases have come out. So, it′s a good time to get back and analyze the fresh LLVM 21.

It has been over a year since the last check of the LLVM project with PVS-Studio, and in that time, two releases have come out. So, it's a good time to get back and analyze the fresh LLVM 21.
#cpp #LLVM #analyzer #check

What is Cyber Resilience Act, and what cybersecurity requirements does it impose? What exactly is the Cyber Resilience Act? This article covers the regulation that establishes cybersecurity requirements for products sold in the European market. We′ll discuss everything: from what.....

What exactly is the Cyber Resilience Act? This article covers the regulation that establishes cybersecurity requirements for products sold in the European market.

#mem #programming