代碼複審結果

時間 2019-11-13

標籤代碼複審結果简体版

原文原文鏈接

複審代碼爲C語言代碼，過程式的實現了需求。編程

代碼文件爲共計620行的單文件，代碼中使用多個函數封裝了執行過程當中的多種操做。數組

代碼中也存在問題：安全

1.做爲一個工程化項目，單文件的方式有欠考慮。ide

2.代碼中的部分變量名，如son和mo，不便於理解。函數

3.沒有模測試，僅能經過結果測試程序是否正確。oop

4.沒有註釋。測試

複審結果以下：（其中N/A表明無效項）ui

General
	Does the code work? Does it perform its intended function, the logic is correct etc.	Y
	Is all the code easily understood?	Y
	Does it conform to your agreed coding conventions?	N/A
	Is there any redundant or duplicate code?	N
	Is the code as modular as possible?	Y
	Can any global variables be replaced?	Y
	Is there any commented out code?	N
	Do loops have a set length and correct termination conditions?	N
	Can any of the code be replaced with library functions?	N
	Can any logging or debugging code be removed?	N

Security
	Are all data inputs checked (for the correct type, length, format, and range) and encoded?	N
	Where third-party utilities are used, are returning errors being caught?	N/A
	Are output values checked and encoded?	Y
	Are invalid parameter values handled?	N

Documentation
	Do comments exist and describe the intent of the code?	N
	Are all functions commented?	N
	Is any unusual behavior or edge-case handling described?	N
	Is the use and function of third-party libraries documented?	N/A
	Are data structures and units of measurement explained?	N/A
	Is there any incomplete code? If so, should it be removed or flagged with a suitable marker like ‘TODO’?	N

Testing
	Is the code testable? i.e. don’t add too many or hide dependencies, unable to initialize objects, test frameworks can use methods etc.	Y
	Do tests exist and are they comprehensive? i.e. has at least your agreed on code coverage.	N
	Do unit tests actually test that the code is performing the intended functionality?	N
	Are arrays checked for ‘out-of-bound’ errors?	N
	Could any test code be replaced with the use of an existing API?	N