Dailydave mailing list archives
Re: Java source code analysis tool
From: Matt Hargett <matt () use net>
Date: Mon, 28 Jun 2004 08:56:32 +0000
dave wrote:
Really the bugs I'd look for in Java are logic errors, but my talk focused on being able to use public tools to do custom source analysis, and here's one of those tools.http://freshmeat.net/projects/lint4j/?branch_id=46555&release_id=165263 *About:*Lint4j is a static Java source code analyzer that detects locking and threading issues, performance and scalability problems, and checks complex contracts such as Java serialization by performing type, data flow, and lock graph analysis.
Does it still require a fair amount of putting special comment tags for it to provide any kind of accuracy? Last time I looked at it, it did. There's nothing wrong with that, of course -- PC-Lint requires a fair amount of training before one really starts to get value out of it.
Logic errors are a worthwhile thing to look for in my opinion, also. _______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://www.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- Java source code analysis tool dave (Jun 28)
- Re: Java source code analysis tool Matt Hargett (Jun 28)
- Re: Java source code analysis tool dave (Jun 28)
- Re: Java source code analysis tool Matt Hargett (Jun 28)