Static Code Analysis is a way of analyzing source code to look for flaws in the constructs and semantics of a computer program. Your application is broken down into several flow models that simulate execution within several paths. The technical details are outlined in the section entitled "How the C/C++ Code Analyzer Works."
Static analysis through Team System (or a third-party static code analyzer) can deliver the following benefits:
Correctness: Static code analysis checks for bad coding practices, thus improving the quality of your code.
Machine detection: Static code analysis will help you hone in on defects that would be hard to find using manual processes.
Automation: Static code analysis automates your testing process, enabling you to fix bugs, rather than spend your time doing extensive code reviews.
Code Analysis for C/C++ looks for specific categories of defects. You can easily use these categories to plan or model your tests. These defect categories (covered later in the chapter) can help you develop solid code review methodologies. For a complete list of warnings and errors, please refer to the C/C++ Code Analysis Warnings section in the MSDN Team System documentation.