More Accurate Checks

• Conventional lint tools report

  • Too many spurious errors
  • Too few actual errors

• Because

  • Code does not reveal the programmer’s intent
  • Fast checks require simplifying assumptions

• Specifications give good simplifying assumptions

Previous slide

Next slide

Back to first slide

View graphic version