Java static code analysis Unique rules to find Bugs, Vulnerabilities, Security Hotspots, and Code Smells in your JAVA code All rules 718 Vulnerability57 Bug175 Security Hotspot40 Code Smell446 Quick Fix 64 Tags
Java code validation at compile time: https://github.com/google/error-prone Extension to Checkstyle: https://github.com/sschaef/checkstyle-teaching Extension to Checkstyle: https://github.com/sevntu-checkstyle/sevntu.checkstyle Extension to Checkstyle: https://github.com/startupheroes/startupheroes...
Static and Dynamic Code Analysis As a PVS-Studio's developer, I am often asked to implement various new diagnostics in our tool. Many of these requests are based on users' experience of working with dynamic code analyzers, for example Valgrind. Unfortunately, it is usually impossible or hardly...
Empower your development process with SAST tools. Identify security & quality issues. Schedule, integrate, and automate static analysis into your workflow.
If you create a security-sensitive cookie in your JAVA code: Cookie c = new Cookie(COOKIENAME, sensitivedata); c.setHttpOnly(false); // Sensitive: this sensitive cookie is created with the httponly flag set to false and so it can be stolen easily in case of XSS vulnerability By default...
their Java code quality. Prevent Code Smells with Static Analysis. Query your code Support for Code Query over LINQ (CQLinq) to easily write custom rules and query code. Learn More > Technical Debt For each issue, the cost to fix and the severity are estimated through customizable C# formula...
their Java code quality. Prevent Code Smells with Static Analysis. Query your code Support for Code Query over LINQ (CQLinq) to easily write custom rules and query code. Learn More > Technical Debt For each issue, the cost to fix and the severity are estimated through customizable C# formula...
SonarQube, SonarCloud & SonarLint use hundreds of unique static code analysis rules to find Java bugs, code smells & vulnerabilities on the Sonar platform
CodeChecker is an analyzer tooling, defect database and viewer extension for static and dynamic analyzer tools. - Ericsson/codechecker
International Symposium on Software Testing and AnalysisStatic and dynamic analysis of call chains in Java - Rountev, Kagan, et al. - 2004 () Citation Context ...erse engineering of UML sequence diagrams from Java code and for testing based on such diagrams. The tool uses several static ...