CISQ Quality Measures - Efficiency
A category in the Common Weakness Enumeration published by The MITRE Corporation.
Categories in the Common Weakness Enumeration (CWE) group entries based on some common characteristic or attribute.
Weaknesses in this category are related to the CISQ Quality Measures for Efficiency. Presence of these weaknesses could reduce the efficiency of the software.
The software creates an immutable text string using string concatenation operations.
The software uses a dedicated, central data manager component as required by design, but it contains code that performs data-access operations that do not use this dat...
The software uses a data element that has an excessively large number of sub-elements with non-primitive data types such as structures or aggregated objects.
The software accesses a data resource through a database without using a connection pooling capability.
The software performs a data query with a large number of joins and sub-queries on a large data table.
The software contains a data query against an SQL table or view that is configured in a way that does not utilize an index and may cause sequential searches ...
The software contains an index range scan for a large data table, but the scan can cover a large number of rows.
The software performs too many data queries without using efficient data processing functionality such as stored procedures.
The software has a loop body or loop condition that contains a control element that directly or indirectly consumes platform resources, e.g. messaging, sessions, ...
The product does not sufficiently protect all possible paths that a user can take to access restricted functionality or resources.
The program does not release or incorrectly releases a resource before it is made available for re-use.
The software uses a large data table that contains an excessively large number of indices.
The software contains a client with a function or method that contains a large number of data accesses/queries that are sent through a data manager, i.e., does not use...
The code contains a member element that is declared as static (but not final), in which its parent class element is not a singleton class - that is, a class...
The software contains a method that accesses an object but does not later invoke the element's associated finalize/destructor method.
This view outlines the most important software quality issues as identified by the Consortium for Information & Software Quality (CISQ) Automated Quality Characteristi...
- Automated Source Code Quality Measures
Consortium for Information & Software Quality (CISQ)