I've been looking into static build tools for Apache Calcite and others. It turns out there is a lot of overlap. I took some time to see how this would apply to Apache Knox. I'm sending this message to gauge Apache Knox interest in this approach.
Some of the tools include: * spotbugs [1] (newer version of findbugs) * errorprone [2] * forbiddenapis [3] An example of what this looks like partially implemented is here [4]. If this looks interesting I can break this down into JIRAs and add them as pieces. At first would enable in "warn" mode and then as fixes are made fail the build on errors for each module. [1] https://spotbugs.github.io/ [2] http://errorprone.info/ [3] https://github.com/policeman-tools/forbidden-apis [4] https://github.com/risdenk/knox/commit/970c183b8c130e009d6ace37688945874d91b7ca Kevin Risden
