Home Add to Favorite Contact Submit  
           29 March, 2024


    
Category:  Press » Software

 

Static Analysis for Java Open Source Projects Now Available From U.S. Department of Homeland Security and Coverity

Popularity:
         Views: 2645
2007-11-20 04:19:29     
Coverity

Coverity, Inc., the leader in improving software quality and security automatically, today announced expanded capabilities of the company's popular open source code analysis site: http://www.scan.coverity.com. Beginning today, the open source Scan site will provide static source code analysis for Java-based open source projects as an extension of Coverity's relationship with the U.S. Department of Homeland Security under the 'Vulnerability Discovery and Remediation Open Source Hardening Project.'

By expanding the Scan site to support Java projects from the open source community, Coverity will help developers uncover previously undetected critical defects, thereby improving the overall security and quality of open source software.

Coverity's Scan site has already made a significant impact on the security of open source projects based on C/C++. Currently, more than 250 C/C++ open source packages are included at the Scan site, representing more than 55 million lines of code. To date, open source project maintainers have fixed more than 7,500 security and quality defects identified by Coverity Prevent SQS (Software Quality System), the technological underpinning of the Scan site.

"As open source software continues to win mindshare with commercial and government users, code quality and security are ongoing requirements," said David Maxwell, open source strategist for Coverity. "We are eager to share the capabilities of Coverity Prevent SQS with open source Java developers to help further improve the security and quality of their projects."

Coverity Prevent SQS checks one hundred percent of the paths and values in C, C++ and Java software projects. Coverity's unique combination of analysis engines based on dataflow and Boolean satisfiability analyzes software dependencies, key third-party libraries and projects spread across multiple development groups. Coverity's low false-positive rates, ability to find critical must-fix errors, and defect resolution tools make developers' lives easier and improves their ability to find and fix defects.

For information on how to include new C/C++ or Java projects in Coverity's Scan site, visit: http://www.scan.coverity.com.

About Coverity

Coverity (http://www.coverity.com), the leader in improving software quality and security, is a privately held company headquartered in San Francisco. Coverity's groundbreaking technology removes the barriers to writing and delivering complex software by automatically finding and helping to fix critical software defects and security vulnerabilities as the software is written. More than 300 leading companies choose Coverity because it scales to tens of millions of lines of code, has the lowest false positive rate and provides 100 percent path and value coverage. Companies like Juniper Networks, Symantec, McAfee, Synopsys, Palm and Wind River work with Coverity's tools to find and fix security and quality defects from their mission-critical code.

Coverity is a registered trademark, and Coverity Extend and Coverity Prevent are trademarks of Coverity, Inc. All other company and product names are the property of their respective owners.

Media Contacts
Jim Shissler
Director, Public Relations

Specialized in: Static Analysis
URL: http://www.coverity.com
Print press release      Bookmark this page
Related Press releases 
The newest release of a complete database development tool "Database Workbench" has arrived! (Popularity: ): Berghem (press.abc-directory ) - October 18th, 2022 - Upscene Productions has launched the latest edition of its flagship software, Database Workbench.This release brings support for the latest MariaDB and Oracle versions, as well as additional features for other database systems. The initial version 6 includes many improvements to the user interface and existing tools, it also brought full Firebird 4 support, PostgreSQL table inheritance and Oracle multi-segmented expression indices support.What's new ...
Frederick Custom Software Company Discusses ERP Software Solutions (Popularity: ): Frederick, Maryland ( press.abc-directory.com ) May 31, 2021 - Orases, a Frederick, Maryland custom software development company, recently released a new educational resource that focuses on explaining the details of ERP software solutions and how they work to increase organizational efficiency. The new article is guided by the software development professionals at Orases who have a deep understanding of ERP software solutions and how they can be valuable for businesses. ...
StarTech Alliance A Launches EaseeControl Edition for Small and Mid-Size Business PCs (Popularity: ): New York, NY, May 30, 2021- StarTech Alliance, a global provider of PC Customer Supprt and PC optimization software, today announced the launch of EaseeControl App. Version 1.0.1.34.EaseeControl secure, repair, optimize and removes unused files from users PCs, allowing Windows applications to run faster while also freeing up hard disk space. EaseeControl App. Version 1.0.1.34 ensure a higher user Privacy online and also cleans traces of user's online activities such ...
ACD Systems Launches Photo Studio Ultimate 2021, Inspired by its Customers (Popularity: ): VICTORIA, BC (November 8, 2020) - Today, ACD Systems International launches ACDSee Photo Studio Ultimate 2021, the latest version of their flagship innovative photo editing software.This year, there's been a huge focus on optimizing the experience for photographers. Performance enhancements make processes up to 100% faster. RAW decoding is up to 20% faster.New features focus on optimizing editing precision and batch processes that make the life of photographers easier."This product ...
Maryland Custom Software Development Company Educates On SaaS (Popularity: ): Frederick, Maryland ( press.abc-directory.com ) October 25, 2020 - Orases, a Maryland custom software development company, recently released a new educational resource on its website that discusses SaaS vs. custom software development. The new article is guided by the expert software developers at Orases who understand the difference between SaaS programs and getting custom software development done. They hope this new article will help readers understand the difference between these ...


Related Business 
Barat (Popularity: ): Compiler front-end for Java, supports static analysis of programs, parses source code and class files, builds full abstract syntax tree from source code files, enriched with name and type analysis information. [Open Source, BSD License]
JC Virtual Machine (Popularity: ): A Java virtual machine implementation that converts class files into C source files using the Soot Java bytecode analysis framework, compiles them with GCC, and loads them using a built-in ELF object file loader. [Open source, LGPL]
Don Greenwood & Associates Inc. (Popularity: ): Security consultants for compliance to the U.S. Department of Homeland Securities, Maritime Transportation Security Act of 2002 and risk assessments.
Legion of The Bouncy Castle (Popularity: ): Provides open source implentations of the Java Cryptography Extension 1.2.1, and a lightweight Java Cryptography API for the J2ME, and the JDK. [Open Source]
ISECOM - Institute for Security and Open Methodologies (Popularity: ): Offers accreditation for security analysts (OPSA), security testers (OPST), and Open Source Security Testing Methodology Manual (OSSTMM) specialists (OPSS).
Leach, John (Popularity: ): Technological tinkering of author, specialising in open source projects involving networking and security. Software projects. Artwork and photography.
Cieslak, Darek (Popularity: ): C.V., diploma - static formal verification . Python section. Freeware and open source programs (Java, Python, C++). Articles about Extreme Programming. Some content in polish.
Java Open Source Mailing List Archive (Popularity: ): A collection of popular Java Open Source project mailing list archives, including Cocoon, Maven, Ant, Axis, Fop, Lucene, POI, Log4J.
Java Open Source Mailing List Archive (Popularity: ): A collection of archives of Open Source Java project mailing list. Lists include Tomcat, JBoss, Struts, iText.
Java Caching Service (Popularity: ): Implementation of the JSR-107 JCache API. Its aim is to provide an open source alternative to commercial jcache implementations and deliver a fast distributed caching mechanism for java and j2ee. [Open source, LGPL]