This topic explains how to analyze and correct static code analysis violations. Sections include:
Results from tests run in the IDE and results imported to the IDE (see Importing Results into the UI) are available in the Fix Static Analysis Violations category of the Quality Tasks view.
Results from tests run in the command line are available in the Static Analysis section of the report.
For each violation reported, we recommend that you and your team review the rule description and the related code, then decide whether:
Test configurations that trigger violations can be opened from the Quality Tasks view: Right-click on a violation and choose View Test Configuration.
Quickly accessing test configuration from the violation is useful for group architects who are customizing tests and want to quickly disable rules that aren’t applicable. Developers importing results from a server-based run may also need to open and review test configurations that trigger violations.
The C++test rule descriptions can help you determine which rules your team wants to follow, understand how reported violations can impact application reliability, security, maintainability, etc., and learn how to correct reported violations.
To view a rule description file, right-click the static analysis violation message in the Quality Tasks view, then choose View Documentation from the shortcut menu. A yellow "Yield" sign marks the node that you should right-click.
To view the source code responsible for the rule violation, double-click the node that shows the line number, or right-click that node and choose Go to from the shortcut menu. The editor will then open and highlight the designated line of code.
You can make the necessary modifications, then save the modified file.
See Suppressing the Reporting of Acceptable Violations.