[Owasp-codereview] Orizon v0.20

Paolo Perego thesp0nge at gmail.com
Tue May 8 11:07:57 EDT 2007


Guys... it's a pleasure for me to announce orizon v0.20. As you may read
into my blog (blogs.owasp.org/orizon), this could be the last release that
sounds more to a PoC than a library.

This release will use JDK 6 compiler API for java source parsing and it
introduces very simple SQL injection check into static code review library
and an "empty catch block in exception handling" check.

Orizon v0.20 is far away from being an usable tool in a real world source
code security assessment and it's not yet ready to be used in solid tool
building. However, I think we're walking the right path...
Orizon v0.30 is planned for June 30th. Starting from that release Orizon
won't be a standalone tool but will direct itself to being an API, so an
announce for the first tool using Orizon will follow soon.

I hope to hear your feedbacks and thanks for all those guys trying orizon.

Ciao ciao
thesp0nge
-- 
Owasp Orizon leader
orizon.sourceforge.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.owasp.org/pipermail/owasp-codereview/attachments/20070508/334a7577/attachment.html 


More information about the Owasp-codereview mailing list