...
Fortify SCA Version 5.0 can detect violations of this rule, but will return false positives if the initialization was done in another function.
GCC Compiler can detect some violations of this rule when the -Wuninitialized flag is used.
Compass/ROSE automatically detects simple violations of this rule, although it may return some false positives. It may not catch more complex violations, such as initialization within functions taking arguments to uninitialized variables. It does catch the second noncompliant code example, and can be extended to catch the first as well.
...