CFDEV released a tool for performing automated Code Reviews this week. The tool comes with over 30 built-in rules that check for security, performance, accessibility, style, and bug related issues. In addition to the built in rules you can easily create your own rules, typical rules are only 4 lines of CFML code.
"The tool started as a way for developers to find Queries that are vulnerable to SQL injection hacking, we quickly realized that it could be abstracted to do much more than that." explained CFDEV's CTO Pete Freitag. "Letï³ say I want to find all queries that use SELECT *, I simply have to point to a directory of code and run the tool. I will then have a report of all instances showing files, line numbers, and code snippets."
Traditionally code reviews or peer reviews take place in a regular basis, once a week for instance. Developers swap code they produced during the week and go through a checklist to look for bugs security problems, performance issues, adherence to coding standards, and other issues. The developer then creates a report and goes over what he or she has found in the peer's code. This process allows the developers to learn the tricks other developers have attained over the years.
Traditional code reviews certainly do a lot to improve the quality of the software developed, and the developers themselves, but they certainly also take quite a bit of time. Many of the issues can be easily picked up by an automated code review tool such as CFDEV's tool for reviewing ColdFusion (CFML) code. CFDEV's tool also allows you to easily write your own rules most rules can be written in just 4 lines of CFML code. In addition each issue the reviewer finds has an associated document explaining why, and how to fix the issue.
CFDEVï³ automated ColdFusion Code Review tool is on sale at a special introductory price through the middle of August.
Please Visit http://www.activsoftware.com/codereview/ for more information.
CFDEV has been building tools for web developers since 1999. CFDEV focuses on products that make web development easier with products such as ActivEdit a WYSIWYG HTML Editor, ActivMail a replacement for CFMAIL, and an Automated Code Review Tool for CFML.