I just learned about static code analysis in school and am interested to hear if anyone has any details on how it is being used with the Android OS, and how it is being used with apps before, or after, they go to market.
Thx, D On Wed, Aug 18, 2010 at 8:48 AM, Dan Hein <[email protected]> wrote: > I was wondering if Google runs automated static analysis tools and or > vulnerability scanners on native (C/C++) code? > > I assume FindBugs is run against Java code. > > Does anyone know if Coverity is still scanning open source > (http://www.coverity.com/html/press_story54_01_08_08.html)? A few of the > projects were also external projects for Android, but I don't have a feel > for how many might have benefited the system on target devices directly. > > > Thanks, > Dan > > -- > You received this message because you are subscribed to the Google Groups > "Android Security Discussions" group. > To post to this group, send email to > [email protected]. > To unsubscribe from this group, send email to > [email protected]. > For more options, visit this group at > http://groups.google.com/group/android-security-discuss?hl=en. > -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/android-security-discuss?hl=en.
