GitHub

Static code analyzer for .NET (Nuget package) based on Security Code Scan.

In most cases, you will want to simply add a new source, sink, sanitizer to existing ruleset. Or probably just a new sink. Check Config/Main.yml file. Entry points are the methods or classes where ...
GitHub

Code Quality and Security for Java

Code Quality and Security for Java This Sonar project is a code analyzer for Java projects to help developers deliver integrated code quality and security. Information about the analysis of Java ...
IEEE

Interactive Cross-Language Pointer Analysis for Resolving Native Code in Java Programs

Abstract: Java offers the Java Native Interface (JNI), which allows programs running in the Java Virtual Machine to invoke and be manipulated by native applications and libraries written in other ...