coverity code checker in Extras
Josh Boyer
jwboyer at jdub.homelinux.org
Wed Aug 30 18:17:59 UTC 2006
On Wed, 2006-08-30 at 13:11 -0500, Jason L Tibbitts III wrote:
> >>>>> "TM" == Till Maas <opensource at till.name> writes:
>
> TM> what is it really, what is going to happen if we accept their
> TM> offer? Will every package in Extras be scanned?
>
> I don't think their technology would support that; as far as I know
> they can't do anything with Perl or Python or the like.
>
> What I find to be of more concern is what maintainers are expected to
> do with that information. In most cases all we'd be able to do is
> pass the reports upstream, which I suppose would be OK but might be a
> bit much to ask some maintainers (i.e. the ones with 50+ packages) to
> handle. Ideally Coverity would just deal directly with upstream and
> extras wouldn't need to be involved.
But would running it do anyone any harm? I think not. And for
ambitious maintainers, they can work with upstream on any issues that
are found.
josh
More information about the fedora-extras-list
mailing list