Java static code analysis tools such as Checkstyle, FindBugs and others can parse your code to identify potential problems. Java developers should make code analysis a key part of the development ...

Invoking the Compiler from Code: The Java Compiler API We all use the javac command-line tool for compiling Java source files to class files. Then why do we need an API to compile Java files? Well ...

Klocwork Insight for C/C++ and Java brings static source code analysis to Java developers. It can help improve code quality while reducing bugs and addressing security vulnerabilities ...

Klocwork will be showing off its extended Java static source-code-analysis capabilities as part of its Klocwork Insight product at ESC. Its source code analysis solution can identify critical bugs ...

CodeSonar for Java also works in parallel with the popular open-source Java static-analysis engines FindBugs and PMD. Results calculated by FindBugs and PMD are automatically imported into CodeSonar, ...

PMD is a static Java source code analysis tool, similar in concept to Checkstyle, FindBugs and Coverity. It searches Java code for inefficient code, bugs, common coding problems, and other such ...

Todd is a Professional Engineer and a Certified Scrum Product Owner. About Klocwork Klocwork is an enterprise software company providing automated source code analysis software products that automate ...

It's always a good idea to employ a few static code analysis tools as part of your software development routine. There are a number of great tools that perform static analysis of Java code, such as ...

We may not see perfect source code in our lifetime, but we are seeing much better analysis tools and promising new approaches to remedy the problem.

Open-source application from SEI CERT, SCALe, uses multiple static analysis tools to find security flaws in source code.