Our great sponsors
-
-
find-sec-bugs
The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
SpotBugs have a lot of extensions such as https://find-sec-bugs.github.io/ https://github.com/KengoTODA/findbugs-slf4j and more, I recommend adding them as well
-
Sonar
Write Clean Java Code. Always.. Sonar helps you commit clean code every time. With over 600 unique rules to find Java bugs, code smells & vulnerabilities, Sonar finds the issues while you focus on the work.
-
In personal projects, I've had good experiences using the error-prone compiler plugin with uber's nullaway.
-
NullAway
A tool to help eliminate NullPointerExceptions (NPEs) in your Java code with low build-time overhead
In personal projects, I've had good experiences using the error-prone compiler plugin with uber's nullaway.
-
Besides the classic pmd/stopbugs/jacoco/owasp, a favorite of mine is forbidden-apis.
-
SpotBugs have a lot of extensions such as https://find-sec-bugs.github.io/ https://github.com/KengoTODA/findbugs-slf4j and more, I recommend adding them as well
-
and https://github.com/mebigfatguy/fb-contrib
-
InfluxDB
Access the most powerful time series database as a service. Ingest, store, & analyze all types of time series data in a fully-managed, purpose-built database. Keep data forever with low-cost storage and superior data compression.
Related posts
- Static Code Analyzer for JAVA development: any recommendations ??
- Java Checkstyle reports formatting as a warning, not an error despite my explicit severity
- Checkstyle - development tool to help programmers write Java code that adheres to a coding standard.
- Code smell plugin
- How can I help my partner write better code?