How do people in this group scope code review engagements? What are some of the tools one uses to count the number of lines of code, supporting libraries, comments, etc. Is there an umbrella list of issues one generally looks for in code reviews? We are talking about open source products written in C/CPP Any help is appreciated Thanks
_______________________________________________ Secure Coding mailing list (SC-L) SC-L@securecoding.org List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com) as a free, non-commercial service to the software security community. Follow KRvW Associates on Twitter at: http://twitter.com/KRvW_Associates _______________________________________________