What are the differences between PMD and FindBugs?

Solution 1

I'm using both. I think they complement each other.

As you said, PMD works on source code and therefore finds problems like: violation of naming conventions, lack of curly braces, misplaced null check, long parameter list, unnecessary constructor, missing break in switch, etc. PMD also tells you about the Cyclomatic complexity of your code which I find very helpful (FindBugs doesn't tell you about the Cyclomatic complexity).

FindBugs works on bytecode. Here are some problems FindBugs finds which PMD doesn't: equals() method fails on subtypes, clone method may return null, reference comparison of Boolean values, impossible cast, 32bit int shifted by an amount not in the range of 0-31, a collection which contains itself, equals method always returns true, an infinite loop, etc.

Usually each of them finds a different set of problems. Use both. These tools taught me a lot about how to write good Java code.

Solution 2

The best feature of PMD, is its XPath Rules, bundled with a Rule Designer to let you easily construct new rules from code samples (similar to RegEx and XPath GUI builders). FindBugs is stronger out of the box, but constructing project specific rules and patterns is very important.

For example, I encountered a performance problem involving 2 nested for loops, resulting in a O(n^2) running time, which could easily be avoided. I used PMD to construct an ad-hoc query, to review other instances of nested for loops - //ForStatement/Statement//ForStatement. This pointed out 2 more instances of the problem. This is not a generic rule whatsoever.

Solution 3

PMD is

• famous
• used widely in industry
• you can add your rules in xml
• gives you detailed analysis in Errors levels and warning levels
• you can also scan your code for "copy and paste lines". Duplicate code. This gives good idea about implementing java oops.

Related videos on Youtube

04 : 23

Công cụ kiểm thử tĩnh FindBugs

Tuanlinh Pham

36

07 : 22

hướng dẫn kiểm tra mã nguồn PMD và FindBugs

Quangvu Dinh

32

23 : 03

Using PMD and FindBugs

Nachiket Naik

19

05 : 07

Using FindBugs, CheckStyle and PMD from IntelliJ with QAplug to improve your Java Coding

EvilTester - Software Testing

15

06 : 00

Using Static Analysis tools - FindBugs and PMD

Nachiket Naik

10

12 : 15

Static Code Analysis with Jenkins : PMD + Checkstyle + Findbugs (Using Maven and GIT)

Multifarious Channel

3

07 : 06

Jenkins with PMD, FindBugs and CheckStyle Plugins Example

Cameron McKenzie

2

Author by

Thomas Owens

Professionally, I'm a software engineer focusing on agile and lean software development and software process improvement. I work to help engineers, teams, and organizations be successful. I have experience with a wide variety of types of software, ranging from embedded systems to desktop applications to web applications. In my spare time, I'm a runner, a photographer, and a casual gamer. Find me on LinkedIn, Twitter, Reddit, Medium, GitHub, Quora, and ProjectManagement.com. Support my freely available (CC BY and CC BY-SA) content through Patreon, PayPal, Buy me a Coffee, or my Amazon Wishlist.

Updated on July 08, 2022