## Code Review – Review Metrics and Review Frequency

Review metrics are commonly used to quantify the efficiency of the process known as code review:

The inspection rate, usually measured every man-hour, is used to calculate the review code. Error rate, usually measures the number of errors found for each man-hour and is used to find errors. Defect density, typically measures the number of defects found for each review and is used to find defects in a given number of codes. The higher the defect density, the greater the number of defects identified, which usually involves more efficient review procedures.

Two examples are used to illustrate the complexities that can arise when evaluating these metrics,

A small number of lines of code specific to the mission critical module in the first sample were evaluated by approximately three reviewers to ensure that no errors were found. The result of high impact density shows slow evaluation rate and fault rate which is 1 defect for every hour.

In the second sample, the GUI dialog boxes were modified, resulting in one hundred and twenty lines of code changed, including some code created by the GUI designers. One of the reviewers is allocated to confirm the changes made and the same reviewer decides to ignore the designer who created the codes and evaluate only those codes that added GUI basics. This result reveals a low fault density, speed rating rate and a defect rate of two faults per hour.

Since the apparent metrics are often different and the code is not mission specific, the reviewer may be asked to spend less time reviewing the changes.

Review Frequency contains efficient and quick rules and regulations for determining code review frequency. Code frequency can be biased by some issues and a decision must be made in context. Some issues to consider are:

A type of review that requires additional time and effort to complete than is required in a lightweight code review. A code used to guide and restore team relationships that may need to be performed regularly. The range and frequency of code changes are irregular and large check-ins versus small frequent check-ins. The nature of the development effort is open source and on and offshore reviews.

