Open Source Libs 👉Security 👉Find Sec Bugs

OWASP Find Security Bugs

Find Security Bugs is the SpotBugs plugin for security audits of Java web applications.

Website : http://find-sec-bugs.github.io/

Main developers

Notable contributions

David Formánek
- Major improvements and refactoring on the taint analysis for injections.
- The creation of a detector for hard coded passwords and cryptographic keys.
Tomáš Polešovský
- Improvements and bug fixes related to the taint analysis.
Maxime Nadeau
- New detectors surrounding the Play Framework and improvements related to Scala.
Naoki Kimura
- Detector for injection in custom API
- Translation of messages in Japanese
Dave Wichers
- Improvement to vulnerability descriptions

Project Sponsors

The development of Find Security Bugs is supported by GoSecure since 2016. The support includes the development of new detectors and the research for new vulnerability classes.

GoSecure Logo

Screenshots

Eclipse

IntelliJ / Android Studio

IntelliJ

SonarQube

License

This software is release under LGPL.

Find Sec Bugs

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

Find Sec Bugs Info

⭐ Stars 1772

🔗 Homepage find-sec-bugs.github.io

🔗 Source Code github.com

🕒 Last Update 5 months ago

🕒 Created 10 years ago

🐞 Open Issues 79

➗ Star-Issue Ratio 22

😎 Author find-sec-bugs