spotbugs / sonar-findbugsLinks
SpotBugs plugin for SonarQube
☆369Updated last week
Alternatives and similar repositories for sonar-findbugs
Users that are interested in sonar-findbugs are comparing it to the libraries listed below
Sorting:
- Shows how to bootstrap a project to write custom rules for PHP, Python, Cobol, RPG☆238Updated 3 weeks ago
- A simple Java command-line utility to mirror the CVE JSON data from NIST.☆210Updated 2 years ago
- Shows how to write a SonarQube Server plugin☆148Updated 6 months ago
- Integrates Dependency-Check reports into SonarQube☆659Updated this week
- Support on Checkstyle in SonarQube. Officially transfered from https://github.com/SonarQubeCommunity/sonar-checkstyle☆185Updated last month
- SonarSource Static Analyzer for Java Code Quality and Security☆1,177Updated last week
- ☕️ PMD Plugin for SonarQube☆278Updated last week
- SonarQube Scanner for Maven☆157Updated this week
- Common Java library used by many SonarScanners☆118Updated this week
- Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects☆328Updated last month
- Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …☆71Updated last month
- Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).☆138Updated 3 weeks ago
- Plugin for doing static analysis in Intellij using PMD☆73Updated this week
- The new home of the FindBugs project☆769Updated 6 months ago
- SonarQube Scanner for Jenkins☆184Updated this week
- a FindBugs/SpotBugs plugin for doing static code analysis for java code bases☆163Updated last week
- SonarLint for Eclipse☆270Updated this week
- ☆332Updated 2 years ago
- ESAPI (The OWASP Enterprise Security API) is a free, open source, web application security control library that makes it easier for progr…☆641Updated last month
- MyBatis Plugin for SonarQube: Rules to check SQL statements in MyBatis Mapper XML files☆76Updated last year
- The OWASP Java Encoder is a Java 1.5+ simple-to-use drop-in high-performance encoder class with no dependencies and little baggage. This …☆521Updated 5 months ago
- Use GitLab OAuth login in SonarQube login page☆102Updated 3 years ago
- Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.☆82Updated last week
- Stapler web framework☆168Updated this week
- Scanner CLI for SonarQube (Server, Cloud)☆398Updated this week
- Coverity Security Library (CSL) is a lightweight set of escaping routines for fixing cross-site scripting (XSS), SQL injection, and other…☆204Updated 9 years ago
- ☆25Updated this week
- A library to read static analysis reports into a Java object model☆87Updated this week
- a library for performing fast, configurable cleansing of HTML coming from untrusted sources☆199Updated this week
- An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies☆63Updated this week