View Help Online

Start here

Home
About Klocwork
What's new
Fixed issues
Release notes
Installation

Reference

C/C++ checkers
Java checkers
C# checkers
MISRA C 2004 checkers
MISRA C++ 2008 checkers
MISRA C 2012 checkers
MISRA C 2012 checkers with Amendment 1
Commands
Metrics
Troubleshooting
Reference

Product components

C/C++ Integration build analysis
Java Integration build analysis
Desktop analysis
Refactoring
Klocwork Static Code Analysis
Klocwork Code Review
Structure101
Tuning
Custom checkers

Coding environments

Visual Studio
Eclipse for C/C++
Eclipse for Java
IntelliJ IDEA
Other

Administration

Project configuration
Build configuration
Administration
Analysis performance
Server performance
Security/permissions
Licensing
Klocwork Static Code Analysis Web API
Klocwork Code Review Web API

Community

View help online
Visit RogueWave.com
Klocwork Support
Rogue Wave Videos

Legal

Legal information

About Klocwork

hide menu -

In this topic:

About Klocwork

Klocwork identifies critical security vulnerabilities and quality defects, optimizes peer code review, and helps developers create more maintainable code.

Previous topic: Klocwork Quick Start
Next topic: Release notes

How does Klocwork integrate with your development workflow?

The Klocwork administrator sets up an integration project for developers to connect to

Klocwork integrates with your build, capturing all of the information it needs to provide a centralized view over the entire code stream, and stores this information in a text file we call a build specification.

The analysis engine takes the build specification as input, analyzing your software system for issues, security vulnerabilities, and metrics threshold violations. We call this an integration build analysis.

The analysis results are then loaded into the database.

Developers connect their local project to the integration project

Once you've checked your code out of source control, you connect your desktop project to the integration project on the Klocwork Server. We call this the connected desktop.

Behind the scenes, Klocwork collects all the information it needs to analyze your code. Because you're connected to the integration project, Klocwork has access to the entire system context when it analyzes your code.

The results are displayed in your development environment. You can easily see which issues were introduced locally and which exist in the integration build.

You review the results, fixing errors and setting others to be fixed later or to be ignored, and adding comments to explain your changes.

Automatic synchronization makes your status changes and comments available to other developers as well as to users of Klocwork Static Code Analysis. Your desktop project is also updated with other developers' changes. This happens even before another integration build analysis has been run.

Klocwork Static Code Analysis allows you to gauge the health of your integration build

Klocwork Static Code Analysis is the Web interface for reports, issue analysis and source cross-reference. Static Code Analysis offers you quick access to information about your own software system. The data that you access through Static Code Analysis is drawn from the database. When a Klocwork administrator runs an analysis of your integration build, the database is populated with information about your software system extracted directly from the source code.

Using the customizable Project Summary Page in Static Code Analysis allows you to create a dashboard for each of your software projects. The built-in reports are customizable as well.

Customize Klocwork for your environment

You can customize the analysis for each of your software projects, both for the integration build and on the desktop. For example, you can:

Related concepts

© Rogue Wave Software, Inc. All rights reserved. | Contact