j2ee and .net code scan Archives - Anuj Varma, Hands-On Technology Architect, Clean Air Activist https://www.anujvarma.com/tag/j2ee-and-net-code-scan/ Production Grade Technical Solutions | Data Encryption and Public Cloud Expert Wed, 07 Sep 2016 16:07:54 +0000 en-US hourly 1 https://wordpress.org/?v=6.9.4 https://www.anujvarma.com/wp-content/uploads/anujtech.png j2ee and .net code scan Archives - Anuj Varma, Hands-On Technology Architect, Clean Air Activist https://www.anujvarma.com/tag/j2ee-and-net-code-scan/ 32 32 Static code analysis https://www.anujvarma.com/static-code-analysis/ https://www.anujvarma.com/static-code-analysis/#respond Wed, 07 Sep 2016 16:07:54 +0000 http://www.anujvarma.com/?p=4335 Static code analysis helps identify code vulnerabilities (and performance issues) before code makes it to production. Most ‘code coverage’ tools require the full source code (compilable source code) to run […]

The post Static code analysis appeared first on Anuj Varma, Hands-On Technology Architect, Clean Air Activist.

]]> Static code analysis helps identify code vulnerabilities (and performance issues) before code makes it to production. Most ‘code coverage’ tools require the full source code (compilable source code) to run analysis. However, some tools such as FxCop can work against compiled code as well.

Cross Platform – J2EE and .NET Static Code Scan

  1. SonarQube – Free
    HP Fortify –  Paid

The post Static code analysis appeared first on Anuj Varma, Hands-On Technology Architect, Clean Air Activist.

]]> https://www.anujvarma.com/static-code-analysis/feed/ 0