You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@accumulo.apache.org by "Christopher Tubbs (JIRA)" <ji...@apache.org> on 2018/03/19 18:22:00 UTC

[jira] [Updated] (ACCUMULO-4705) Consider using security findbugs detectors

     [ https://issues.apache.org/jira/browse/ACCUMULO-4705?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Christopher Tubbs updated ACCUMULO-4705:
----------------------------------------
    Fix Version/s:     (was: 1.7.4)
                       (was: 1.9.0)

> Consider using security findbugs detectors
> ------------------------------------------
>
>                 Key: ACCUMULO-4705
>                 URL: https://issues.apache.org/jira/browse/ACCUMULO-4705
>             Project: Accumulo
>          Issue Type: Improvement
>            Reporter: Christopher Tubbs
>            Priority: Major
>             Fix For: 2.0.0
>
>
> findsecbugs-plugin is a findbugs plugin to detect potential security bugs in Java code.
> We should consider using this in our builds, at the very least, to triage potential security issues.
> In the findbugs plugin's configuration section, we'd add:
> {code}
>   <configuration>
>     ...
>     <plugin>
>       <groupId>com.h3xstream.findsecbugs</groupId>
>       <artifactId>findsecbugs-plugin</artifactId>
>       <version>1.7.1</version>
>     </plugin>
>   </configuration>
> {code}
> See their website for details and docs: http://find-sec-bugs.github.io/



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)