Our great sponsors
- CodiumAI - TestGPT | Generating meaningful tests for busy devs
- Sonar - Write Clean Java Code. Always.
- InfluxDB - Access the most powerful time series database as a service
- ONLYOFFICE ONLYOFFICE Docs — document collaboration in your environment
SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.
Static application security testing (SAST) is essential in tackling the source code vulnerabilities, late diagnosis of problems, and lack of root-cause analysis. This post describes how to carry out SAST in your Java application using SpotBugs.
The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
How can the article fail to mention Find Security Bugs (find-sec-bugs) when talking about using SpotBugs (ex-FindBugs) for analyzing code for security issues?
TestGPT | Generating meaningful tests for busy devs. Get non-trivial tests (and trivial, too!) suggested right inside your IDE, so you can code smart, create more value, and stay confident when you push.
Looking for a Static Code Analysis tool for Scala Code
2 projects | reddit.com/r/cybersecurity | 28 Aug 2021
What are some useful static analyzers for Java?
9 projects | reddit.com/r/java | 2 Jan 2022
My Thoughts on “Bad Code”
1 project | news.ycombinator.com | 17 Mar 2023
Will Project Valhalla bring Kotlin-like nulls to Java?
1 project | reddit.com/r/Kotlin | 9 Feb 2023
Retrofitting null-safety onto Java at Meta
4 projects | news.ycombinator.com | 22 Nov 2022