shadowsock5/cobra-rules

cobra-rules

参考

• https://github.com/find-sec-bugs/find-sec-bugs/tree/master/findsecbugs-samples-java/src/test/java/testcode
• https://github.com/spotbugs/sonar-findbugs
• https://github.com/pmd/pmd
• Hades - 静态代码脆弱性检测系统
• https://github.com/momosecurity/momo-code-sec-inspector-java/tree/2018.3/src/test/testData/lang/java/rule/momosecurity
• https://github.com/momosecurity/mosec-maven-plugin
• https://cryin.github.io/blog/JAVA-Static-Code-Audit-and-Analysis/
• https://github.com/javaparser/javaparser
• https://github.com/kuron3k0/CodeAuditChecklist/blob/master/JavaChecklist.md
• https://github.com/haby0/sec-note/blob/main/java/xxe/note.md