[Owasp-codereview] Yasca v1.0 Released

Paolo Perego thesp0nge at gmail.com
Wed Oct 1 02:59:30 EDT 2008


Hi Michael, your project sounds to be very closer to mine (owasp
orizon). It's great having another great opensource code review
framework / tool.

Sure I'll check it out :)

Ciao ciao
Paolo

2008/10/1 Michael V. Scovetta <scovetta at users.sourceforge.net>:
> Hello,
>    I thought this would be relevant to the OWASP Code Review Project, since
> I started writing Yasca to help with code reviews.
>
> Yasca ("Yet Another Source Code Scanner") is a framework and implementation
> for performing source code analysis. It integrates some security scanners
> (PMD, FindBugs, Jlint) and has some of its own too. It's meant to find on
> the "low hanging fruit" in web applications, and be **very** easily
> extensible (i.e. ~30 seconds to write a new rule) yet powerful (i.e.
> arbitrary call-outs to your own scanning code). Yasca is written in
> command-line PHP, is cross-platform, and is simple and quick to run.
>
> Yasca is open-source (BSD license) and is available on SourceForge
> (http://sourceforge.net/projects/yasca) or http://yasca.org/.
>
> I'm very interested in hearing feedback and suggestions.
>
> Thank you,
>
> Mike Scovetta
> _______________________________________________
> Owasp-codereview mailing list
> Owasp-codereview at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-codereview
>
>



-- 
Owasp Orizon leader
orizon.sourceforge.net


More information about the Owasp-codereview mailing list