I was wondering if Google runs automated static analysis tools and or vulnerability scanners on native (C/C++) code?
I assume FindBugs is run against Java code. Does anyone know if Coverity is still scanning open source ( http://www.coverity.com/html/press_story54_01_08_08.html)? A few of the projects were also external projects for Android, but I don't have a feel for how many might have benefited the system on target devices directly. Thanks, Dan -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/android-security-discuss?hl=en.
