130
GitHub - find-sec-bugs/find-sec-bugs: The SpotBugs plugin for security audits of...
source link: https://github.com/find-sec-bugs/find-sec-bugs
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
README.md
Find Security Bugs
Find Security Bugs is the SpotBugs plugin for security audits of Java web applications.
Website : http://find-sec-bugs.github.io/
Main developers
Notable contributions
- David Formánek
- Major improvements and refactoring on the taint analysis for injections.
- The creation of a detector for hard coded passwords and cryptographic keys.
- Tomáš Polešovský
- Improvements and bug fixes related to the taint analysis.
- Maxime Nadeau
- New detectors surrounding the Play Framework and improvements related to Scala.
- Naoki Kimura
- Detector for injection in custom API
- Translation of messages in Japanese
- Dave Wichers
- Improvement to vulnerability descriptions
Project Sponsors
The development of Find Security Bugs is supported by GoSecure since 2016. The support includes the development of new detectors and the research for new vulnerability classes.
Screenshots
Eclipse
IntelliJ / Android Studio
SonarQube
License
This software is release under LGPL.
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK