Comments (5)
fwendland
commented on May 25, 2024
Hi tiandiyixian,
Can you send me a link to the WebGoat5.0 project?
It's very difficult to give you useful advice without having some idea what your trying to analyze.
from codyze.
JulianSchuette
commented on May 25, 2024
Hi tiandiyixian!
Neither Codyze nor CPG have been optimized for performance until now, so there is definitely room for improvement. Having said that, running the analysis all night without getting results sounds like a bug and if you provide the GitHub link, we will check what is wrong here.
We did a rough performance estimate on ~1400 Github projects. As you can see in the diagram, the majority of files (not projects) is well below 2 seconds, the median is somewhere 700ms-ish.
from codyze.
tiandiyixian
commented on May 25, 2024
@fwendland
Hi fwendland ,
Thanks for your reply. This is my test case.:https://github.com/11112222/WebGoat5_0_32555lines/tree/master/WebGoat5.0. It ran for a long time when analyzing it, or the process was a memory leak and exit. After increasing the memory, it was a long wait.
from codyze.
tiandiyixian
commented on May 25, 2024
@JulianSchuette
Thanks for your reply, maybe my test cases are special cases, webgoat 5.0 and OWASP benchmark, both of them have been analyzed for a long time without results, I will try other use cases
from codyze.
JulianSchuette
commented on May 25, 2024
I am closing this since the upgrade to cpg 2.1.1 many things have changed and improved. However, there is still a bug (#32) in the deserialization module that needs to be fixed. When that is done, we will repeat the performance evaluation.
from codyze.
Related Issues (20)
- Use CPG's `ValueResolver` to help resolve constants
- Trouble using Codyze on IntelliJ HOT 1
- Incorrect template type evaluation when matching MARK ops
- Mark tests do not handle spaces in filepath
- Duplicate conditions in MARK rules
- ScopeManager Error
- No output files produced: CLI mode
- Windows Path Issues for ConfigLoadTest HOT 3
- Transition towards Java SE 17 (LTS) HOT 1
- Executors as part of SARIF output HOT 1
- Rework integration of Spotless HOT 1
- Consistent versioning scheme for v3 HOT 1
- Populate Manifest for artifacts
- Rework codyze.io website
- Create workflow for codyze.io generation
- Reimplement MARK for v3 in Kotlin HOT 1
- Enable maven publish for v3 artefacts HOT 2
- Support pass registration for executors of specification languages
- Publish sources and docs for Maven artifacts HOT 1
- Generate AST for C/C++ Source HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from codyze.