Static analysis for Scala

V. O. Afanasyev^ab, A. E. Borodin^a, A. A. Belevancev<sup>ac

a</sup> Ivannikov Institute for System Programming of the RAS
^b National Research University Higher School of Economics, Moscow
^c Lomonosov Moscow State University

Abstract: The paper describes a static analyzer for finding defects in Scala programs. The proposed analysis scheme uses JVM bytecode produced during compilation. The generated bytecode is used as an input for inter-procedural static analyzer Svace. In contrast to the analysis of other languages supported by Svace, in this work we describe an approach that does not require compiler modifications and therefore simplifies language support. This approach can also be used in static analyzers that aim to support a large number of programming languages.

Keywords: static analysis, search for defects, vulnerabilities, Scala, JVM, bytecode, Svace

DOI: 10.15514/ISPRAS-2024-36(3)-1