Summary
| Feature | Status | Notes |
|---|---|---|
| Maintainability | ✔ | Complexity, duplication, code smells |
| Linting | ✔ | Via Semgrep |
| Custom checks | ✔ | |
| Security scanning | ✔ | AppSec and secrets |
| Code metrics | ✔ | |
| Code coverage | ✔ | Via gcov / LCOV |
Details
| Maintainability | ||
| Complexity | ✔ | Aka cognitive complexity |
| Cyclomatic complexity | ✔ | |
| Identical code duplication | ✔ | |
| Similar code duplication | ✔ | |
| Code smells | ✔ | |
| Linters | ||
| Semgrep | ✔ | Static analysis with a community rule library |
| Custom checks | ||
| ast-grep | ✔ | |
| Semgrep | ✔ | |
| ripgrep | ✔ | |
| Security scanning | ||
| Gitleaks | ✔ | Secrets scanning |
| Semgrep | ✔ | AppSec (SAST) |
| Trivy | ✔ | Dependency scanning (SCA) for Conan |
| TruffleHog | ✔ | Secrets scanning |
| Code coverage | ||
| gcov / lcov | ✔ | |
| LCOV coverage format | ✔ | |
| Cobertura coverage format | ✔ |
File extensions
By default, C files are defined as:qlty.toml.