Uploaded byJavaDayUA
780 views

How to get the most out of code reviews

The document discusses effective code review practices, emphasizing clear communication, a structured process, and the importance of utilizing appropriate tools. Key recommendations include automating repetitive tasks, maintaining a positive code review culture, and adhering to best practices for performance, security, and maintainability. Additionally, it highlights the significance of constructive feedback and collaboration among team members.

Embed presentation

Downloaded 27 times
HOWTO STOP WASTINGYOURTIME AND START PERFORMING USEFUL CODE REVIEWS Maria Khalusova, JetBrains @mariakhalusova
CODE REVIEW
https://twitter.com/pcweenies/status/649954658794913792
CONTENTS • Smooth start • Making code reviews useful • What to look for in a code review • Human factor
WHERETO START
THETEAM • Communicate clearly. • Listen to concerns. • Cultivate code review culture.
PROCESS • Decide on the process • Keep workflow simple • Iterations are good • Average of 2 reviewers • Do reviews often
NEWTOOL • Yes, you need a code review tool • Find the right tool for you: Fits in your environment Supports chosen workflow Meets your particular needs Keeps you in the loop without spamming
SUMMARY • Have an open dialog with the team • Have a good plan • Find a tool
MAKING CODE REVIEWS USEFUL
AUTOMATE WHAT CAN BE AUTOMATED • Tests • Continuous Integration • Static code analysis • Spellchecker • etc.
Code review is not a place for coding style wars
AS A CODE AUTHOR • Review your own code • Commit small changes • Document your code • Write meaningful commit message
AS A REVIEWER • Don’t delay the review • Don’t spend too much time • Apply your expertise
KNOW WHATTO LOOK FOR
GENERAL AND BUSINESS LOGIC • Correctness • Coding errors • Business logic and rules • User-facing messages
ARCHITECTURE AND DESIGN • Is the code in the right place? • Complexity • Reusability • Data structures
READABILITY & MAINTAINABILITY • Naming • Readability • Test coverage • Documentation Always code as if the person who ends up maintaining your code is a violent psychopath who knows where you live. - John F. Woods (1991), Martin Golding (1994)
PERFORMANCE • Performance requirements • Performance tests • Unnecessary network calls • Potential memory leaks
SECURITY • Review potential problems • Third party libraries • Authentication • Data encryption • Proper management of passwords, encryption keys, etc. • …
SECURITY: USEFUL READ • Common weakness enumeration: CWE.mitre.org • OWASP.org Code Review Guide Book v. 2.0 ALPHA
HUMAN FACTOR
https://twitter.com/msdevUK/status/644136657311113216
https://twitter.com/ankitsadana1/status/651473349319766016
LEARNTO GIVE FEEDBACK • Don’t be rude • Don’t dictate, ask questions, engage in a discussion • It’s ok to disagree and argue • Do not teach • Be sensitive to cultural differences
LEARNTO RECEIVE FEEDBACK • Contain your immediate reaction • Consider suggestions • Ask followup questions
IT DOESN’T HAVETO BE ALL CRITICISM PRAISE GOOD WORK
THANKYOU! QUESTIONS? maria.khalusova@jetbrains.com @mariakhalusova

More Related Content

PPTX
Code Review
byMikalai Alimenkou
 
PPTX
Code Review Best Practices
byTrisha Gee
 
PDF
Code Review for iOS
byKLabCyscorpions-TechBlog
 
PDF
Code Review: How and When
byPaul Gower
 
PDF
Code Review Matters and Manners
byTrisha Gee
 
DOCX
Code review guidelines
byLalit Kale
 
PPTX
Code Review tool for personal effectiveness and waste analysis
byMikalai Alimenkou
 
PDF
How to successfully grow a code review culture
byNina Zakharenko
 
Code Review
byMikalai Alimenkou
 
Code Review Best Practices
byTrisha Gee
 
Code Review for iOS
byKLabCyscorpions-TechBlog
 
Code Review: How and When
byPaul Gower
 
Code Review Matters and Manners
byTrisha Gee
 
Code review guidelines
byLalit Kale
 
Code Review tool for personal effectiveness and waste analysis
byMikalai Alimenkou
 
How to successfully grow a code review culture
byNina Zakharenko
 

What's hot

PDF
Code review in practice
byEdorian
 
PPTX
Clean code - Getting your R&D on board
byRuth Sperer
 
PPTX
Continuous Integration: Finding problems soonest
byShawn Jones
 
PPTX
Code review
byAbhishek Sur
 
PDF
Code Review: How and When
byPaul Gower
 
PDF
Code Review
byDivante
 
PPTX
Code Review
byR M Shahidul Islam Shahed
 
PPTX
A Brief Introduction to Test-Driven Development
byShawn Jones
 
PPTX
Adopting Agile
byCoverity
 
PPTX
Is Groovy better for testing than Java?
byTrisha Gee
 
PPTX
Working Effectively With Legacy Code
byExcella
 
PDF
TDD — Are you sure you properly test code?
byDmitriy Nesteryuk
 
PPTX
Writing Better Tests - Applying Clean-Code TDD at 99designs
bylachlandonald
 
PDF
АНТОН МУЖАЙЛО «Test Team Development and Management Techniques»
byQADay
 
PPTX
Static Analysis Primer
byCoverity
 
PDF
Code-Review-Principles-Process-and-Tools (1)
byAditya Bhuyan
 
PPTX
Finding a good development partner
byKevin Poorman
 
PPT
Code review
bydqpi
 
Code review in practice
byEdorian
 
Clean code - Getting your R&D on board
byRuth Sperer
 
Continuous Integration: Finding problems soonest
byShawn Jones
 
Code review
byAbhishek Sur
 
Code Review: How and When
byPaul Gower
 
Code Review
byDivante
 
Code Review
byR M Shahidul Islam Shahed
 
A Brief Introduction to Test-Driven Development
byShawn Jones
 
Adopting Agile
byCoverity
 
Is Groovy better for testing than Java?
byTrisha Gee
 
Working Effectively With Legacy Code
byExcella
 
TDD — Are you sure you properly test code?
byDmitriy Nesteryuk
 
Writing Better Tests - Applying Clean-Code TDD at 99designs
bylachlandonald
 
АНТОН МУЖАЙЛО «Test Team Development and Management Techniques»
byQADay
 
Static Analysis Primer
byCoverity
 
Code-Review-Principles-Process-and-Tools (1)
byAditya Bhuyan
 
Finding a good development partner
byKevin Poorman
 
Code review
bydqpi
 

Similar to How to get the most out of code reviews

PPTX
Capability Building for Cyber Defense: Software Walk through and Screening
byMaven Logix
 
PDF
Code reviews
byRaúl Araya Tauler
 
PPT
How to be a Guru Coder
byTeraTech, Inc
 
PPTX
Code Reviews
byphildenoncourt
 
PDF
Voxxed days 2015-hakansaglam-codereview
byHakan Saglam
 
PPT
Code reviews: a short introduction
byFreekDB
 
PDF
Code Reviews Inside Out
byInes Jelovac
 
PDF
The senior dev
byLuciano Mammino
 
PPTX
How to successfully grow a code review culture
byDanylenko Max
 
PDF
On to code review lessons learned at microsoft
byMichaela Greiler
 
PDF
How to do code review and use analysis tool in software development
byMitosis Technology
 
PPTX
Mastering Code Reviews
byDerik Whittaker
 
PPT
Code Review
byrantav
 
PDF
Code Review Skills for Pythonistas - Nina Zakharenko - EuroPython
byNina Zakharenko
 
PPTX
Code reviews
byRoger Xia
 
PPTX
What they don't teach you in CS departments
byWillSullivan
 
PDF
Xen Project Contributor Training - Part 1 introduction v1.0
byThe Linux Foundation
 
PDF
The Anatomy of a Code Review
byGuilherme Garnier
 
PDF
Code stock
byErin Page
 
PDF
Surviving the technical interview
byEric Brooke
 
Capability Building for Cyber Defense: Software Walk through and Screening
byMaven Logix
 
Code reviews
byRaúl Araya Tauler
 
How to be a Guru Coder
byTeraTech, Inc
 
Code Reviews
byphildenoncourt
 
Voxxed days 2015-hakansaglam-codereview
byHakan Saglam
 
Code reviews: a short introduction
byFreekDB
 
Code Reviews Inside Out
byInes Jelovac
 
The senior dev
byLuciano Mammino
 
How to successfully grow a code review culture
byDanylenko Max
 
On to code review lessons learned at microsoft
byMichaela Greiler
 
How to do code review and use analysis tool in software development
byMitosis Technology
 
Mastering Code Reviews
byDerik Whittaker
 
Code Review
byrantav
 
Code Review Skills for Pythonistas - Nina Zakharenko - EuroPython
byNina Zakharenko
 
Code reviews
byRoger Xia
 
What they don't teach you in CS departments
byWillSullivan
 
Xen Project Contributor Training - Part 1 introduction v1.0
byThe Linux Foundation
 
The Anatomy of a Code Review
byGuilherme Garnier
 
Code stock
byErin Page
 
Surviving the technical interview
byEric Brooke
 

More from JavaDayUA

PDF
STEMing Kids: One workshop at a time
byJavaDayUA
 
PDF
Flavors of Concurrency in Java
byJavaDayUA
 
PDF
What to expect from Java 9
byJavaDayUA
 
PDF
Continuously building, releasing and deploying software: The Revenge of the M...
byJavaDayUA
 
PDF
The Epic Groovy Puzzlers S02: The Revenge of the Parentheses
byJavaDayUA
 
PDF
20 Years of Java
byJavaDayUA
 
PDF
Unlocking the Magic of Monads with Java 8
byJavaDayUA
 
PDF
Virtual Private Cloud with container technologies for DevOps
byJavaDayUA
 
PPTX
JShell: An Interactive Shell for the Java Platform
byJavaDayUA
 
PPTX
Interactive Java Support to your tool -- The JShell API and Architecture
byJavaDayUA
 
PDF
MapDB - taking Java collections to the next level
byJavaDayUA
 
PDF
Save Java memory
byJavaDayUA
 
PDF
Design rationales in the JRockit JVM
byJavaDayUA
 
PPTX
Next-gen DevOps engineering with Docker and Kubernetes by Antons Kranga
byJavaDayUA
 
PPTX
Apache Cassandra. Inception - all you need to know by Mikhail Dubkov
byJavaDayUA
 
PPTX
Solution Architecture tips & tricks by Roman Shramkov
byJavaDayUA
 
PPTX
Testing in Legacy: from Rags to Riches by Taras Slipets
byJavaDayUA
 
PDF
Reactive programming and Hystrix fault tolerance by Max Myslyvtsev
byJavaDayUA
 
PDF
Spark-driven audience counting by Boris Trofimov
byJavaDayUA
 
PDF
API first with Swagger and Scala by Slava Schmidt
byJavaDayUA
 
STEMing Kids: One workshop at a time
byJavaDayUA
 
Flavors of Concurrency in Java
byJavaDayUA
 
What to expect from Java 9
byJavaDayUA
 
Continuously building, releasing and deploying software: The Revenge of the M...
byJavaDayUA
 
The Epic Groovy Puzzlers S02: The Revenge of the Parentheses
byJavaDayUA
 
20 Years of Java
byJavaDayUA
 
Unlocking the Magic of Monads with Java 8
byJavaDayUA
 
Virtual Private Cloud with container technologies for DevOps
byJavaDayUA
 
JShell: An Interactive Shell for the Java Platform
byJavaDayUA
 
Interactive Java Support to your tool -- The JShell API and Architecture
byJavaDayUA
 
MapDB - taking Java collections to the next level
byJavaDayUA
 
Save Java memory
byJavaDayUA
 
Design rationales in the JRockit JVM
byJavaDayUA
 
Next-gen DevOps engineering with Docker and Kubernetes by Antons Kranga
byJavaDayUA
 
Apache Cassandra. Inception - all you need to know by Mikhail Dubkov
byJavaDayUA
 
Solution Architecture tips & tricks by Roman Shramkov
byJavaDayUA
 
Testing in Legacy: from Rags to Riches by Taras Slipets
byJavaDayUA
 
Reactive programming and Hystrix fault tolerance by Max Myslyvtsev
byJavaDayUA
 
Spark-driven audience counting by Boris Trofimov
byJavaDayUA
 
API first with Swagger and Scala by Slava Schmidt
byJavaDayUA
 

Recently uploaded

PDF
DSD-INT 2025 REACT - Rapid E-flow Assessment and Communication Tool - Flores
byDeltares
 
PDF
DSD-INT 2025 From Software to Impact - Water Quality Modelling for the UN Oce...
byDeltares
 
PDF
virtual CISO service by Reflect Security
byreflectsecsol
 
PPTX
Key Benefits of Odoo Customization Services
byCandidRoot Solutions Private Limited
 
PDF
A Complete Guide to Salesforce for Education.pdf
byVALiNTRY360
 
PDF
Smarter Testing Safer Systems Balancing AI and Oversight in Regulated Environ...
byApplitools
 
PDF
DSD-INT 2025 Thermal and chemical plumes of sea cooling water from PEM platfo...
byDeltares
 
PDF
SWEBOK: the software engineering body of knowledge (SC25 Workshop Research So...
byHironori Washizaki
 
PDF
DSD-INT 2025 Exploring different domain decomposition approaches for enhanced...
byDeltares
 
PDF
The Evolution of Project Portfolio Management - What Modern PMOs Are Doing Di...
byOnePlan Solutions
 
PPTX
Attacking and Defending AI by Adity Roy and Nikita Biradar
byCysinfo Cyber Security Community
 
PDF
The Ultimate Serial Port Detective – Baudowl
byCysinfo Cyber Security Community
 
PDF
AWS Certified Developer - Associate certificate.pdf
byGabriellaSantosRodri
 
PDF
6 Hotel Booking Trends You Can’t Ignore in 2025.pdf
byHotelogix
 
PPTX
Top Benefits of Hiring a Mobile App Development Company in India
byDevherds software solution
 
PDF
How to Make Your AI Reliable: Comprehensive Guide to Testing AI Applications ...
byQATestLab Quality is a rule
 
PDF
Threat Hunting with Garuda: From Manual Analysis to AI-Driven Hunting By Monn...
byCysinfo Cyber Security Community
 
PDF
AI/ML Infra Meetup | SkyPilot: Open-source System to Scale AI across Clusters...
byAlluxio, Inc.
 
PDF
SCORM Cloud: The 5 categories of content distribution
byRustici Software
 
PDF
AOX Apps - Mobile App Development Company New York
byAOX APPS
 
DSD-INT 2025 REACT - Rapid E-flow Assessment and Communication Tool - Flores
byDeltares
 
DSD-INT 2025 From Software to Impact - Water Quality Modelling for the UN Oce...
byDeltares
 
virtual CISO service by Reflect Security
byreflectsecsol
 
Key Benefits of Odoo Customization Services
byCandidRoot Solutions Private Limited
 
A Complete Guide to Salesforce for Education.pdf
byVALiNTRY360
 
Smarter Testing Safer Systems Balancing AI and Oversight in Regulated Environ...
byApplitools
 
DSD-INT 2025 Thermal and chemical plumes of sea cooling water from PEM platfo...
byDeltares
 
SWEBOK: the software engineering body of knowledge (SC25 Workshop Research So...
byHironori Washizaki
 
DSD-INT 2025 Exploring different domain decomposition approaches for enhanced...
byDeltares
 
The Evolution of Project Portfolio Management - What Modern PMOs Are Doing Di...
byOnePlan Solutions
 
Attacking and Defending AI by Adity Roy and Nikita Biradar
byCysinfo Cyber Security Community
 
The Ultimate Serial Port Detective – Baudowl
byCysinfo Cyber Security Community
 
AWS Certified Developer - Associate certificate.pdf
byGabriellaSantosRodri
 
6 Hotel Booking Trends You Can’t Ignore in 2025.pdf
byHotelogix
 
Top Benefits of Hiring a Mobile App Development Company in India
byDevherds software solution
 
How to Make Your AI Reliable: Comprehensive Guide to Testing AI Applications ...
byQATestLab Quality is a rule
 
Threat Hunting with Garuda: From Manual Analysis to AI-Driven Hunting By Monn...
byCysinfo Cyber Security Community
 
AI/ML Infra Meetup | SkyPilot: Open-source System to Scale AI across Clusters...
byAlluxio, Inc.
 
SCORM Cloud: The 5 categories of content distribution
byRustici Software
 
AOX Apps - Mobile App Development Company New York
byAOX APPS
 

How to get the most out of code reviews