In the spring of 2007, when EE Times still came out in print, I stumbled upon an article announcing the latest release of a static code analysis product. “Static code analysis can find bugs in software by analyzing source code, without any need to execute the program” the article claimed. (The article is still available at http://www.eetimes.com/document.asp?doc_id=1304520)
Intrigued, I checked it out and quickly realized its potential. After a short courtship by our R&D staff, Verific became a proud licensee of what was then known as Coverity Prevent Express, which I guess nowadays goes by the name Coverity Quality Adviser.
As in most quality assurance products, your biggest bang for the buck is in your initial deployment, as they show you all your booboos from the previous years. Once we had worked our way through those, and we were pretty much “Coverity clean”, it actually took us little effort over time to stay that way.