Skip to content

find-sec-bugs/find-sec-bugs

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
2 branches 22 tags
Code

Latest commit

@h3xstream
h3xstream Merge pull request #690 from oxeye-gal/invokedynamic-workaround
68628d3 Jul 26, 2023
Merge pull request #690 from oxeye-gal/invokedynamic-workaround 
Adding workaround for JDK > 8 invokedynamic tainting
68628d3

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
.github
Add ignore path for samples purposely bad
January 28, 2022 14:06
cli
Upgrade CLI
February 3, 2022 16:06
findsecbugs-plugin
Merge pull request #690 from oxeye-gal/invokedynamic-workaround
July 26, 2023 13:28
findsecbugs-samples-deps
Merge pull request #629 from marcelel/master
July 10, 2022 23:11
findsecbugs-samples-java
Add GCM-SIV to authenticated cipher mode list
July 17, 2023 20:06
findsecbugs-samples-jsp
The toSafeJSON() and safeQuote() JSP EL functions are now in the defa…
December 13, 2022 16:48
findsecbugs-samples-kotlin
Preparing repo for next version
April 11, 2022 02:01
findsecbugs-test-util
Preparing repo for next version
April 11, 2022 02:01
website
update links to plugins; the old links pointed to deprecated or even …
February 1, 2022 15:14
.gitignore
added EnabledExtensionsInApacheXmlRpcDetector and mocks
November 22, 2018 16:30
.travis.yml
Enable depedency caching for travis
March 9, 2021 20:45
CHANGELOG.md
Update auto-generated CHANGELOG..
April 7, 2017 10:49
CONTRIBUTING.md
Minor change to contribution file
August 7, 2017 16:13
LGPL-3.0-header.txt
Remove the year in the file header. 2015+ compliant
December 29, 2014 12:52
LGPL-3.0.txt
License files
October 18, 2012 22:28
LICENSE
License file added (duplicate)
November 10, 2016 10:11
README.md
I no longer work for GoSecure
May 16, 2022 10:24
SECURITY.md
Security policy created based on suggestion of GitHub
August 3, 2021 13:38
pom.xml
Preparing repo for next version
April 11, 2022 02:01
OWASP Find Security Bugs Main developers Notable contributions Project Sponsors Screenshots Eclipse IntelliJ / Android Studio SonarQube License

README.md

OWASP Find Security Bugs

Java CI with SpotBugs codecov Maven Central Slack Channel

Find Security Bugs is the SpotBugs plugin for security audits of Java web applications.

Website : http://find-sec-bugs.github.io/

Main developers

Notable contributions

Project Sponsors

The development of Find Security Bugs is supported by GoSecure since 2016. The support includes the development of new detectors and the research for new vulnerability classes.

GoSecure Logo

Screenshots

Eclipse

Eclipse

IntelliJ / Android Studio

IntelliJ

SonarQube

SonarQube

License

This software is release under LGPL.

About

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

find-sec-bugs.github.io/

Topics

java security security-audit bytecode findbugs static-analysis code-analysis owasp taint-analysis hacktoberfest cwe

Resources

Readme

License

LGPL-3.0 license

Security policy

Security policy
Activity

Stars

2.1k stars

Watchers

90 watching

Forks

462 forks
Report repository

Releases 18

Version 1.12.0 - Preventing the next Log4Shell Latest
Apr 11, 2022
+ 17 releases

Packages

No packages published

Used by 2.8k

  • @nataliahrabovska
  • @GabrielBGarcia
  • @shobhavathi
  • @taojintianxia
+ 2,833

Contributors 66

+ 55 contributors

Languages