Should rules be divided to have separate enforcements? #1799
Assignees
Comments
|
Editors call: We want the rules to be general because they are aimed at programmers, and the Enforcements to be specific because they are aimed at tool implementers. Perhaps we should numbering the Enforcements for each rule, so that people writing portable code would be able to turn them on and off with the same results across Guideline checker implementations. Would that address your concern? |
|
Yeah, I think this sounds reasonable and would address this issue. |
|
Editors call: Thanks! Sorry for the lag on this. We decided on #2178 to not suppress specific Enforcements. The model is that if a rule is active all its Enforcements are active too. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Some of the rules cover a wide range of errors each of which might have a different enforcement in the static analysis tool that is checking for guideline violations.
One example is:
There are many ways for a pointer to be invalid:
Individual static analysis tools are likely to detect all these errors in separate checks. Users trying to suppress a false positive using
[[gsl::suppress(lifetime.1)]]might end up suppressing more than they wanted. It would be nice to give users more granularity, so they can express which aspect of the lifetime error is a false positive, so other checks have a chance to detect other kinds of lifetime errors after the code changes.Another example is:
While the general principle is well captured in the rule, many static analysis tools have specialized versions that can find particular instances of this problem, like:
The text was updated successfully, but these errors were encountered: