[Owasp-testing] Code Review project and Code-Scanning-Tool(s)

Jeff Williams jeff.williams at aspectsecurity.com
Thu Jan 18 09:20:47 EST 2007

>> If you're interested in a supercharged engine, James Gosling's  
>> Jackpot engine is really really cool.  It's basically an API for
>I'm beginning to sound like a LAPSE cheerleader, but why should we  
>reinvent the wheel when there is already a Java code review tool that  
>is not only open source, but it's an existing OWASP project!

I agree totally. Jackpot is really for something different.  Actually
the engine is really the simple part.  The hard part is collecting
rules.  Even if we just write them down in English it would be
incredibly useful.


More information about the Owasp-testing mailing list