Highly Effective Code Reviews (Hint: They’re Automated)


Industry data demonstrate that code reviews are highly effective.

effectiveness of code reviews
Out-Sized Effectiveness of Code Reviews

The problem, however, is that code reviews are time consuming, expensive, and difficult to get right.

To be effective, code reviews require the following:

1) Software engineering expertise

2) An objective basis for evaluating code

3) Comprehensive code coverage

4) A repeatable method that produces reliable results

5) Practical guidance on how to prioritize and fix problems found, and

6) A way to quantify improvement (and hence the effectiveness of code review activities)

As you can see, these are very difficult to set up in any organization. It quickly becomes too expensive, cumbersome, and unworkable.

So how do you get both low cost AND effective code reviews that overcome all the usual stumbling blocks (1 -6) that otherwise prevent companies from effective code reviews?

Check out the webinar on automating code reviews on the DCG website!

Filed in: Technical Debt
Get the Pulse Newsletter  Sign up for the latest Software Intelligence news Subscribe Now <>
Open source is part of almost every software capability we use today. At the  very least libraries, frameworks or databases that get used in mission critical  IT systems. In some cases entire systems being build on top of open source  foundations. Since we have been benchmarking IT software for years, we thought  we would set our sights on some of the most commonly used open source software  (OSS) projects. Software Intelligence Report <> Papers
In our 29-criteria evaluation of the static application security testing (SAST)  market, we identified the 10 most significant vendors — CAST, CA Veracode,  Checkmarx, IBM, Micro Focus, Parasoft, Rogue Wave Software, SiteLock,  SonarSource, and Synopsys — and researched, analyzed, and scored them. This  report shows how each measures up and helps security professionals make the  right choice. Forrester Wave: Static Application Security Testing, Q4 2017  Analyst Paper
Making sense of cloud transitions for financial and telecoms firms Cloud  migration 2.0: shifting priorities for application modernization in 2019  Research Report
Load more reviews
Thank you for the review! Your review must be approved first
New code

You've already submitted a review for this item