Findbugs Java code analyzer updated to 1.3.1

by

In: Code Auditing , Configurations checks , FindBugs

29 December 2007

FindBugs which uses static analysis to look for bugs in Java code. It is free software, distributed under the terms of the Lesser GNU Public License. The name FindBugsâ„¢ and the FindBugs logo are trademarked by The University of Maryland. FindBugs is sponsored by Fortify Software and SureLogic

FindBugs requires JRE (or JDK) 1.4.0 or later to run. However, it can analyze programs compiled for any version of Java.

FindBugs analyzes more than 280 differents bugs in several catagories as well as bad practice, correctness, malicious code vulnerability.... It could be used either in command line or swing interface.

Here is the list of analyzed items.

Major changes for release 1.3.x

  • New reports
  • Many bugs fixes

Get full list of changes here.

Post scriptum

Compliance Mandates

  • Code Auditing :

    PCI/DSS 6.3.6, 6.3.7, 6.6, SOX A12.8, GLBA 16CFR Part 314.4(b) and (2);FISMA RA-5, SC-18, SA-11 SI-2, and ISO 27001/27002 (12.4.1, 12.4.3, 12.5)


Related Articles

Code Auditing
Configurations checks
FindBugs