Source Code Quality Audit
What is a Source Code Audit?
The main purpose of IT system source code audits (also known as code reviews) is to establish the quality of the system architecture by examining it at source code level: is the system an asset, or is it a liability? If the system is an asset, it will provide long service and good return on investment. If it isn't, it is better to know early on so remedial action can be taken. Delaying action incurs a technical debt which could risk the un-timely and costly demise of the IT system.
How Are Source Code Audits Performed?
At Cohesive Computing we use a combination of automated tools and technical expertise to perform static code analysis. The quality metrics we measure the code base against are generally available from online and printed resources. We have consultants who can also review business requirements and system design documents.
What Problems Might a Source Code Audit Uncover?
Source code audits must not be confused with identifying adherance to certain coding styles, nor must quality criteria be considered a hindrance to creative software development. The quality criteria that we measure source code against will help identify areas of the source code that could impact any of the following properties of the system:
- Reliability
- Testability
- Security
- Scalability
- Efficiency
- Usability
- Code reuse
- Maintainability
- Ease of development
How Long Does a Source Code Audit Take?
This depends on the scale and complexity of the system. A medium scale enterprise system can be expected to take ten business days to audit by one of our consultants. For over half that time the consultant may review your system at your business premises, with the remaining time off-site producing an audit report.
We can then advise on remedial work for tackling quality issues that are most crucial to your business.