With the new version CodeSonar is now able to check code in C# for errors, security holes or deviations from programming standards in addition to C, C++ and Java. CodeSonar supports the most important programming languages for safety-critical industries such as automotive, manufacturing, medical technology, aerospace or defense.
The CodeSonar user experience has been further enhanced by support for the Microsoft Visual Studio development environment. This is based on the existing support of the Eclipse IDE. CodeSonar uses open standards as far as possible:
With CodeSonar 5 it is now possible to import data in Static Analysis Results Interchange Format (SARIF). GrammaTech has also extended the analysis engine. The new version provides developers with a copy-paste checker that detects problems when reusing code. The new checker has already proven its power in several open source projects and has discovered over 20 bugs in popular programs such as the Linux kernel, Chromium, MySQL, Wine, Eclipse, Python or Postgres.
A key differentiator between CodeSonar and other analysis tools is the output of detailed, easy-to-understand information about each warning by the Natural Language Generator. With CodeSonar 5, the language support was extended to include Chinese (Mandarin) in addition to the existing languages English and Japanese. Additional languages can be added without much effort.
Other new features of CodeSonar 5 include improved support for C++ 11, 14 and 17 as well as floating point support or role-based access management for improved usability in large installations.
The update is available free of charge to all customers with an active maintenance contract. A 30-day trial version of CodeSonar 5 is available at go.grammatech.com.