What are some useful static analyzers for Java?

This page summarizes and extends the software alternatives mentioned in the source post on Reddit.

2022-01-02

Security Code Collaboration Open Source

SpotBugs Landing Page
1

SpotBugs

Static Application Security Testing (SAST)
Pricing:
- Open Source
#Code Analysis #Code Review #Web Application Security 4 social mentions
Dependency-Check Landing Page
2

DC

Dependency-Check

Dependency-Check is a utility that identifies project dependencies and checks if there are any...
Pricing:
- Open Source
This one has proved very useful - OWASP dependency checker - downloads the NVD and crosschecks any CVEs to dependencies you use: https://owasp.org/www-project-dependency-check/.

#Security #Code Analysis #Web Application Security 16 social mentions

Discuss: What are some useful static analyzers for Java?

Related Posts

List of Top Free Open Source & Self Hosted Application for Media Streaming

devopsschool.com // 12 months ago

35 Open-source Free Music and Audio Streaming Servers (Self-hosted)

medevel.com // 3 months ago

14 Best Open Source ETL Tools For QA Teams In 2024

theqalead.com // 5 months ago

11 Best FREE Open-Source ETL Tools in 2024

hevodata.com // about 1 year ago

10 Best Open Source ETL Tools for Data Integration

testsigma.com // 12 months ago

The 8 Best DIY Security Camera Apps and Software for Linux

makeuseof.com // about 1 year ago