Which type of code review is typically performed by automated tools rather than by a human?

Static program analysis is a method where automated tools are used to examine the source code without executing it. This approach focuses on identifying potential vulnerabilities, coding standard violations, and other issues that could affect the reliability and security of the software. These tools can efficiently flag problems such as memory leaks, null pointer dereferences, and potential security vulnerabilities according to predefined rules.

By using automated static analysis, development teams can quickly assess large codebases and ensure compliance with coding standards and security best practices, making it an essential part of the software development lifecycle. This contrasts with methods like peer review, formal inspection, and code walkthroughs, which rely heavily on human input and interaction for evaluation and feedback.