Who is Richard Ewing?

Richard Ewing is a Product Economist and AI Capital Auditor. He is the Founder of Exogram, a verification infrastructure for AI. He audits R&D spend and surfaces hidden capital risks like technical debt, AI cost overruns, and zombie infrastructure. He has scaled B2B SaaS from $0 to $25M ARR. Published in CIO.com, Built In, Mind the Product, and HackerNoon.

What is a Product Economist?

A Product Economist treats product decisions as economic decisions. Instead of measuring velocity or story points, a Product Economist measures Return on Invested Capital (ROIC), Cost of Goods Sold efficiency, and technical debt in dollar terms. The methodology was coined by Richard Ewing.

What is the Technical Insolvency Date?

The Technical Insolvency Date (TID) is the specific quarter where maintenance costs consume 100% of available engineering capacity, reducing feature velocity to zero. Calculate yours free at richardewing.io/tools/pdi.

Exogram is verification infrastructure for AI, founded by Richard Ewing. It prevents hallucination propagation with admissibility control planes and state-hashing commit enforcement. LLMs generate language; Exogram maintains reality.

How do I calculate technical debt cost?

Use the free Product Debt Index (PDI) calculator at richardewing.io/tools/pdi to quantify hidden technical debt in dollar terms, calculate your Technical Insolvency Date, and benchmark against industry standards.

How much does AI cost per query?

AI costs range from $0.0001/query for small models to $0.10+/query for frontier models like GPT-4. Use the free AI Unit Economics Benchmark (AUEB) at richardewing.io/tools/aueb to calculate your specific AI cost structure.

Glossary/Static Code Analysis

Technical Debt & Code Quality

1 min read

What is Static Code Analysis?

TL;DR

Static code analysis is the automated examination of source code without executing it.

Static code analysis is the automated examination of source code without executing it. Static analysis tools scan code for potential bugs, security vulnerabilities, code smells, style violations, and complexity issues before the code is deployed.

Common static analysis tools include: SonarQube (multi-language, enterprise), ESLint (JavaScript/TypeScript), pylint/mypy (Python), RuboCop (Ruby), Checkstyle/SpotBugs (Java), and CodeClimate (multi-language SaaS).

Static analysis catches issues that are invisible during code review and common in human-written or AI-generated code: null pointer dereferences, SQL injection vulnerabilities, unused variables, unreachable code, type mismatches, and race conditions.

In the era of AI-generated code (vibe coding), static analysis is more important than ever. AI code generators produce code that often passes functional tests but contains subtle security, performance, or maintainability issues that only static analysis detects.

Why It Matters

Static analysis is the most cost-effective quality assurance practice in software engineering. Finding a bug in static analysis costs 10x less than finding it in testing and 100x less than finding it in production. It is essential for organizations using AI code generation.

Frequently Asked Questions

What is static code analysis?

Static code analysis is automated examination of code without running it, checking for bugs, security vulnerabilities, style violations, and complexity issues.

What tools do static code analysis?

SonarQube (enterprise, multi-language), ESLint (JS/TS), pylint (Python), CodeClimate (SaaS), and language-specific linters like RuboCop, Checkstyle, and SwiftLint.

Need Expert Help?

Richard Ewing is a Product Economist and AI Capital Auditor. He helps companies translate technical complexity into financial clarity.

Book Advisory Call →

Explore More

Why It Matters

Frequently Asked Questions

What is static code analysis?

What tools do static code analysis?

Related Terms

Need Expert Help?

Explore More

Free Tools

Glossary

Frameworks