Q: 16
Which of the following are the typical defects found by static analysis tools?
a. Variables that are never used.
b. Security vulnerabilities.
c. Poor performance.
d. Unreachable code.
e. Business processes not followed.
Options
Discussion
B
Yeah D makes sense. Static analysis can't spot business process or performance stuff.
I don't think it's C, because static analysis tools aren't usually spotting business process issues or performance problems directly. D fits better since unused variables, unreachable code, and security vulnerabilities are the main things those tools catch. Pretty sure about D, but open if someone thinks otherwise.
D . Static analysis tools are good at catching unused variables, security flaws, and unreachable code. Not so much with performance or business process stuff. Pretty sure that's what they're going for here, but open to arguments.
D (torn on b honestly, but static tools flag vars & unreachable code).
D imo. Static analysis tools flag unused variables, unreachable code, and sometimes security issues but not business processes or performance.
Be respectful. No spam.
