On Sat, 13 Jul 2019 at 18:46, Stefan Weil <s...@weilnetz.de> wrote: > LGTM reports 16 errors, 81 warnings and 119 recommendations: > https://lgtm.com/projects/g/qemu/qemu/alerts/?mode=list.
I had a look at some of these before, but mostly I came to the conclusion that it wasn't worth trying to put the effort into keeping up with the site because they didn't seem to provide any useful way to mark things as false positives. Coverity has its flaws but at least you can do that kind of thing in its UI (it runs at about a 33% fp rate, I think.) "Analyzer thinks this multiply can overflow but in fact it's not possible" is quite a common false positive cause... Anyway, if you want to fish out specific issues, analyse whether they're false positive or real, and report them to the mailing list as followups to the patches which introduced the issue, that's probably the best way for us to make use of this analyzer. (That is essentially what I do for coverity.) thanks -- PMM
