Checklists are not about creativity; they don't help you make dramatic insights. Instead, they're about consistency; they make sure you don't forget the simple, boring stuff. And some of the simple boring stuff is really important.
We in the software industry can use checklists as part of code reviews and inspections. This list covers the major concerns:
- (reuse) Is there already code that does something similar? Why is this code not reusing the existing work, perhaps with modifications?
- (correctness) What has been done to verify that this code produces correct results? In particular, what parts of it are verified by automatic tests?
- (clarity) If the purpose of this code or its implementation is obscure, where is it explained?
- (documentation) How widely is this code used? Is its documentation appropriate to the breadth of use?
- (data volume) How large a volume of input is this code expected to process? Are the algorithms and data structures appropriate to the task?
- (memory use) Does the code allocate memory? Who takes ownership of it, and how will it eventually be freed?
- (error handling) How does the code report errors or unexpected conditions? Does it propagate error reports upward from code it calls?
- (concurrency) Does this code execute concurrently? What has been done to avoid memory corruption and unnecessary exclusion?
- (execution efficiency) Does this code need to execute quickly? What has been done to ensure it does so?
- (storage efficiency) Does this code need to use storage parsimoniously? What has been done to ensure it does so?
- (security) Does this code access or produce sensitive information? What has been done to keep this information secure?
- (dead code) If this code replaces other code, has the older code been removed?
No comments:
Post a Comment