The latest release extends support for a variety of secure application development guidelines and compliance reporting (e.g., for CWE-SANS, OWASP, and NIST SAMATE). The extended coding guidelines are available for desktop, pattern-based, and data flow-based execution.
The extended static analysis for security analysis works hand-in-hand with Jtest's runtime error detection, which identifies security vulnerabilities that occur as the application is exercised during any automated or manual tests.
Moreover, Jtest's desktop analysis optimizations slashes the time and effort required to find and fix critical defects — as well as confirms their successful removal. This helps teams ensure that the risks exposed by static analysis, unit testing, and runtime error detection are remediated rapidly and efficiently.
Specific capabilities introduced include continuous static analysis, one-click retesting, quick mode, debug mode, and more.
Additional highlights include:
- Enhanced Spring support with static analysis and unit testing
- Enhanced Ant/Maven plugin facilitates continuous integration and testing
- Support for Eclipse JUnit launch configurations
- Redesigned metrics reporting.