Unnecessary initialization. See readability-redundant-string-init.

Wrong entry.

Please move into new checks list (in alphabetical order)

Please separate with empty line and use first statement from documentation here.

Please use double back-ticks to highlight language constructs. Same below.

What about function calls marked noreturn?

St => S

"S" is a common abbreviation in the Clang codebase, "St" isn't.

(everywhere in the patch)

Please add documentation comments.

Please separate the logic that finds variables from the rest of the logic.

Finding variables has to be recursive, the rest does not have to be.

hasDescendant will recurse into other functions defined in the loop body, for example into lambdas.

for (...) {
  auto x = []() { throw 0; }
}

You can add the forFunction matcher to the loop ending statement matcher, and then use equalsNode to confirm that the loop ending statement is in the same function as the for loop.

Please also add tests for this case.

I'd suggest to attach the diagnostic to the loop -- the problem is with the loop, not with the first reference to the variable.

ClangTidy messages are sentence fragments that start with a lowercase letter.

It would be also helpful to state the problem explicitly.

"this loop is infinite; none of its condition variables are updated in the loop body"

s/checks for/finds/ (everywhere in the patch)

"Finding infinite loops is well-known to be impossible (halting problem)."

"However, it is possible to detect some obvious infinite loops, for example, if the loop condition is not changed."

"It is a local variable" (local variables can only be declared in functions)

I don't quite understand what you mean by "it is no member expression". Also, users likely won't understand the term "member expression".

s/considered as infinite/considered infinite/

I don't think we can say the "mistakenly" part. Explaining checker's behavior like that suggests that the checker detects the user's intent, which it does not. For example, it could also be the case that the user wanted to increment both i and j in the loop body.

All we can say is the loop is infinite because in the loop condition "i < 10" all variables (i) never change.

Please add a period at the end of the comment.

Please also put comments on separate lines to avoid awkward wrapping like in tests below (such complex wrapping also discourages people from writing more detailed comments.)

"unknown_function"?

Please also add tests for lambdas capturing the loop variable by reference.

Is all escaping that syntactically follows the loop actually irrelevant? For example:

int i = 0;
int j = 0;
int *p = &j;
for (int k = 0; k < 5; k++) {
  *p = 100;
  if (k != 0) {
    // This loop would be reported as infinite.
    while (i < 10) {
    }
  }
  p = &i;
}

Why?

Intentional infinite loops *that perform side-effects in their body* are quite common -- for example, network servers, command-line interpreters etc.

Also, if the loop body calls an arbitrary function, we don't know if it will throw, or exit(), or kill the current thread or whatnot.

You are right, but how frequent are such cases? I found no false positives at all when checking some ope-source projects. Should we spend resources to detect escaping in a nesting loop? I could not find a cheap way yet. I suppose this can only be done when nesting two loops. (I am sure we can ignore the cases where the outer loop is implemented using a goto.

We already handle loop exit statements including calls to [[noreturn]] functions. Is that not enough?

s/as//

I don't know, however, this is one of the few sources of false positives for this check. This check generally can't detect all infinite loops, it is only trying to detect obvious ones. Therefore, I don't think it is exchange a bit more precision for false positives.

My best advice is to drop the heuristic about variable escaping after the loop. Any escaping => silence the warning.

If you want to handle this case correctly, you have to use the CFG.

User-defined functions are not always annotated with `[[noreturn]], and sometimes can't be annotated, for example, because they call exit()` conditionally:

while (true) {
  std::string command = readCommand();
  executeCommand(command);
}

void executeCommand(const std::string &command) {
  if (command == "exit") {
    exit();
  }
  ...
}

Please delete "\brief" (everywhere in the patch) -- it is the default for the first sentence.

Also s/pointer of reference/pointer or reference/

Please add a period at the end.

I'd prefer you to add these tests back and add a short comment that this code triggers false negatives that are difficult to solve without CFG-based analysis.