Advantages

  • Professional

    CodeArts Check provides nearly 2000 Huawei typical check rules and multi-dimensional reports for quality gates, code health status, etc.

    CodeArts Check provides nearly 2000 Huawei typical check rules and multi-dimensional reports for quality gates, code health status, etc.

  • Accurate

    You can locate reported defects under fix guidance and customize check rule sets to target at defects that you pay more attention to.

    You can locate reported defects under fix guidance and customize check rule sets to target at defects that you pay more attention to.

  • Comprehensive

    CodeCheck supports code guideline, security, code repetition rate, and cyclomatic complexity checks in 10 mainstream development languages such as Java, C#, and JavaScript. It is compatible with CWE/OWASP TOP 10/SANS TOP 25/CERT security standards.

    CodeCheck supports code guideline, security, code repetition rate, and cyclomatic complexity checks in 10 mainstream development languages such as Java, C#, and JavaScript. It is compatible with CWE/OWASP TOP 10/SANS TOP 25/CERT security standards.

  • Easy to Use

    You can check code in hybrid languages, run configured tasks by one click, filter defects in batches, and quick handle defects by severity or category.

    You can check code in hybrid languages, run configured tasks by one click, filter defects in batches, and quick handle defects by severity or category.

Application Scenarios

R&D Quality and Security Check

Application Scenario

Code quality and security issues need to be automatically checked during software development. Quality and security guidelines need to be incorporated into software production workflows.


Advantages

  • Comprehensive and professional capabilities

    – 10+ development languages, 5+ mainstream standards in the industry, and Huawei programming guidelines


    – Comprehensive checks of code style, quality, and security, and evaluation of code quality based on 7 features of Clean Code


    – In-depth taint analysis and code check capabilities across files and functions, covering 10,000+ security scenarios

  • Ultra-large-scale code check supported for large enterprises

    CodeArts Check can scan 10 billion lines of code every day.

  • Improved efficiency by fixing defects at one stop

    – Accurately locates defects, supports guided analysis, and provides suggestions for you to quickly fix defects.


    – Automatically synchronizes ignored issues among branches in the same repository, avoiding repeated analysis.


    – Automatic recovery

  • Various APIs seamlessly integrated into workflows

    – Defect protection at coding, merge, and version release layers for both efficiency and quality

Code Quality and Security Audit

Application Scenario

Government cloud operators and large enterprises need in-depth code security check capabilities to manage ISV software security quality and build supply chain security systems.


Advantages

  • Professional

    CodeArts Check provides in-depth code security analysis capabilities, supports taint analysis, and detects common code security vulnerabilities, such as OWASP Top 10.

  • Improved efficiency by fixing defects at one stop

    – Accurately locates defects, supports guided analysis, and provides suggestions for you to quickly fix defects.


    – Automatically synchronizes ignored issues among branches in the same repository, avoiding repeated analysis.

Functions

  • Multiple Languages

    Supports common development languages such as Java, JavaScript, CSS, HTML, PHP, C#, and Android.

    Supports common development languages such as Java, JavaScript, CSS, HTML, PHP, C#, and Android.

  • Typical Checks

    Provides nearly 2000 Huawei typical check rule sets to support scenarios such as web app, security, architecture, and coding defect checks.

    Provides nearly 2000 Huawei typical check rule sets to support scenarios such as web app, security, architecture, and coding defect checks.

  • Custom Checks

    You can define your own check rule sets based on rule libraries to meet specific scenario requirements.

    You can define your own check rule sets based on rule libraries to meet specific scenario requirements.

  • Fix Suggestions

    Provides detailed impact description, correct examples, incorrect examples, and fix suggestions for each code defect.

    Provides detailed impact description, correct examples, incorrect examples, and fix suggestions for each code defect.

  • Differentiated Handling

    You can filter defects by severity, defect category, language, or file directory.

    You can filter defects by severity, defect category, language, or file directory.

  • Multi-Dimensional Reports

    Provides quality rates, risk levels, defect trends, and multiple code quality reports.

    Provides quality rates, risk levels, defect trends, and multiple code quality reports.