Dubbed the Microsoft SharePoint Online Code Analysis Framework (MSOCAF), is a new application for developers building custom SharePoint solutions, and is designed to simplify and speed up the review process of their projects.
This application can be leveraged by customers, ISVs, and vendors to validate and submit custom solutions.
"By using MSOCAF, the engineering review process should be expedited as the customers will be able to detect and fix the code issues themselves before submitting the custom solutions to Microsoft. Optionally, MSOCAF can also be used to deploy custom solutions to the customer's test environment or to rollback or remove components of a deployed solution. Previously the submission process was manual and thus time consuming. MSOCAF can communicate with a web service hosted on the customer's SharePoint environment to submit the deployment package, and submit the custom solution automatically," revealed Microsoft.
"MSOCAF analysis is required and mandatory for all custom solutions developed for deployment to SharePoint Online. MSOCAF analysis executes a set of rules against the custom solutions, prior to submission for deployment approval into the pre-production and production environments. MSOCAF app is built using an extensible framework so that the SharePoint Online engineering team can add new rules and/or plug-ins in the future. Code analysis within MSOCAF focuses on areas like memory management, security vulnerabilities, exception management, object model usage, quality gates for unsupported features and reporting. The framework leverages existing tools like FxCop, CAT.Net, and SPDisposeCheck to analyze custom solutions."
More Info: MSOCAF