Good question. I would love to have access to a Findbugs configuration that is suitable for scanning Android app code.
On Wed, Aug 18, 2010 at 8:48 AM, Dan Hein <[email protected]> wrote: > I was wondering if Google runs automated static analysis tools and or > vulnerability scanners on native (C/C++) code? > > I assume FindBugs is run against Java code. > > Does anyone know if Coverity is still scanning open source > (http://www.coverity.com/html/press_story54_01_08_08.html)? A few of the > projects were also external projects for Android, but I don't have a feel > for how many might have benefited the system on target devices directly. > > > Thanks, > Dan > > -- > You received this message because you are subscribed to the Google Groups > "Android Security Discussions" group. > To post to this group, send email to > [email protected]. > To unsubscribe from this group, send email to > [email protected]. > For more options, visit this group at > http://groups.google.com/group/android-security-discuss?hl=en. > -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/android-security-discuss?hl=en.
