CISQ Quality Measures - Efficiency
A category in the Common Weakness Enumeration published by The MITRE Corporation.
Categories in the Common Weakness Enumeration (CWE) group entries based on some common characteristic or attribute.
Weaknesses in this category are related to the CISQ Quality Measures for Efficiency. Presence of these weaknesses could reduce the efficiency of the software.
The product creates an immutable text string using string concatenation operations.
The product uses a dedicated, central data manager component as required by design, but it contains code that performs data-access operations that do not use this data...
The product uses a data element that has an excessively large number of sub-elements with non-primitive data types such as structures or aggregated objects.
The product accesses a data resource through a database without using a connection pooling capability.
The product performs a data query with a large number of joins and sub-queries on a large data table.
The product contains a data query against an SQL table or view that is configured in a way that does not utilize an index and may cause sequential searches t...
The product contains an index range scan for a large data table, but the scan can cover a large number of rows.
The product performs too many data queries without using efficient data processing functionality such as stored procedures.
The product has a loop body or loop condition that contains a control element that directly or indirectly consumes platform resources, e.g. messaging, sessions, l...
The product does not sufficiently protect all possible paths that a user can take to access restricted functionality or resources.
The product does not release or incorrectly releases a resource before it is made available for re-use.
The product uses a large data table that contains an excessively large number of indices.
The product contains a client with a function or method that contains a large number of data accesses/queries that are sent through a data manager, i.e., does not use ...
The code contains a member element that is declared as static (but not final), in which its parent class element is not a singleton class - that is, a class...
The product contains a method that accesses an object but does not later invoke the element's associated finalize/destructor method.
This view outlines the most important software quality issues as identified by the Consortium for Information & Software Quality (CISQ) Automated Quality Characteristi...
- Automated Source Code Quality Measures
Consortium for Information & Software Quality (CISQ)