Good Programming in Java
Tools
| FindBugs | Free | standalone GUI application, or Eclipse plugin | FindBugs is a highly configurable tool, that allows loading custom rule sets. The default rule set is rather broad spectrum and includes many security related checks. |
|---|---|---|---|
| CodePro Analytix | Commercial | Eclipse plugin, or Maven/Ant build integration | CodePro Analytix's default configuration includes rules rather similar to FindBugs, but it has the advantage of having a few additional rules and is somewhat simpler to use and configure. |
Further Reading
- Review of Java bug finders and code cleaners:
http://oreillynet.com/pub/wlg/4481
