Speaker
Description
Codee is the best-in-class static analyzer and source code formatter for Fortran, enhancing modern Fortran software development with advanced code review and testing capabilities that have only been available for C and C++ until the moment. Powered by Codee’s Deep Analysis technology, the tool helps catch bugs, enforce coding guidelines, modernize legacy code, ensure code portability, address security vulnerabilities, and optimize code efficiency of Fortran/C/C++ code. The first part of the talk introduces the Codee tool, including free-form and fixed-form Fortran source code formatting, linter-like reports, prioritization rankings, AutoFix’es, incremental static analysis capabilities and integrations with IDEs, control version systems and CI/CD frameworks. The second part of the talk presents several contributions to the Fortran community, including automated testing of the open-source projects TreeSitter, LLVM, LLVM/Flang for large, real-world Fortran codes, as well as initiatives like the Open Catalog of checkers for correctness, modernization, security, portability and optimization. Lastly, the talk aligns with recent trends in DevOps and DevSecOps by presenting Codee as the tool-of-choice to enforce compliance with secure coding standards like CWE, CERT and ISO.
