[jira] [Created] (ACCUMULO-4705) Consider using security findbugs detectors

Christopher Tubbs (JIRA) Tue, 12 Sep 2017 11:38:47 -0700

Christopher Tubbs created ACCUMULO-4705:
-------------------------------------------


             Summary: Consider using security findbugs detectors
                 Key: ACCUMULO-4705
                 URL: https://issues.apache.org/jira/browse/ACCUMULO-4705
             Project: Accumulo
          Issue Type: Improvement
            Reporter: Christopher Tubbs
             Fix For: 1.7.4, 1.8.2, 2.0.0


findsecbugs-plugin is a findbugs plugin to detect potential security bugs in 
Java code.

We should consider using this in our builds, at the very least, to triage 
potential security issues.

In the findbugs plugin's configuration section, we'd add:
{code}
  <configuration>
    ...
    <plugin>
      <groupId>com.h3xstream.findsecbugs</groupId>
      <artifactId>findsecbugs-plugin</artifactId>
      <version>1.7.1</version>
    </plugin>
  </configuration>
{code}

See their website for details and docs: http://find-sec-bugs.github.io/



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

[jira] [Created] (ACCUMULO-4705) Consider using security findbugs detectors

Reply via email to