TheServerSide

Best Java static code analysis tools for code quality automation

One of the best ways to protect your software project from avoidable bugs is the use of Java static code analysis tools. These tools can help identify and fix problematic code before it reaches ...
TheServerSide

Static analysis of Java via the Checkstyle plugin for Eclipse

It's always a good idea to employ a few static code analysis tools as part of your software development routine. There are a number of great tools that perform static analysis of Java code, such as ...
Computerworld

How to choose and use source code analysis tools

The high cost of finding and patching application flaws is well known. Wouldn’t it be cheaper to write secure code in the first place? One of the fastest growing areas in the software security ...
ZDNet

GitHub: Now our built-in bug checker gets these third-party code-scanning tools

GitHub has released a host of third-party security tools for its just-launched code-scanning feature, which helps open-source projects nix security bugs before they hit production code. GitHub Code ...
InfoQ

GitHub Enhances CodeQL with Declarative Security Modeling for Faster, More Flexible Analysis

GitHub has introduced a significant update to its CodeQL engine, enabling developers to define custom sanitizers and ...