Plugin for integration of security analysis tool 'Xanitizer'
119 views
Skip to first unread message
Norman Wenzel
Nov 5, 2015, 11:24:29 AM11/5/15
to SonarQube
Dear SonarQube Team and Users,
we (RIGS IT GmbH) are developers of the security analysis tool 'Xanitizer'. The tool does a static code analysis and data flow analysis to find security vulnerabilities in Java code. The tool can be downloaded for free.
For monitoring the results we now have developed a SonarQube plugin that can be downloaded here. The plugin does not run a security analysis by itself, it just evaluates the result files produced by the main tool, so the Xanitizer is always required.
It would be great if you could add at least a reference to the plugin in the plugin library. Making the plugin open source is planned for the (near) future so that it can be added to the Update Center eventually.
If there are any additional requirements please let us know.
Regards,
Norman Wenzel
RIGS IT GmbH
G. Ann Campbell
Nov 6, 2015, 8:40:03 AM11/6/15
to SonarQube
Hi Norman,
I've added it to the Community Plugins page.
Ann
On Thursday, 5 November 2015 11:24:29 UTC-5:
On Thursday, 5 November 2015 11:24:29 UTC-5:
Norman Wenzel
Nov 6, 2015, 8:52:52 AM11/6/15
to SonarQube
Hi Ann,
thank you for adding the plugin.
Is it possible to replace "scan" with "security scan" so that the context becomes more clearer?
Regards
Norman
Reply all
Reply to author
Forward
0 new messages