Fortify Software, in conjunction with the FindBugs project, is providing free code quality scans and auditing for open source Java projects at the Java Open Review web site:
This service includes scans using both FindBugs and Fortify's Source Code Analysis, which looks for security bugs such as SQL injection and cross site scripting. Both scans are filtered to produce only the highest priority warnings (for FindBugs, only medium and high priority correctness warnings), although this can be modified on a per-project basis.... read more
Findbugs downloads now surpass 300,000 downloads (including both downloads from SourceForge and from our Eclipse auto-update site (http://findbugs.cs.umd.edu/eclipse).
FindBugs 1.1.2 has been released. This release includes numerous bug fixes, as well as several new bug detectors. See the FindBugs home page (http://findbugs.sourceforge.net) for more details.
FindBugs 1.0.0 was released on June 10, 2006.
Congratulations to FindBugs for reaching the
milestone of 200,000 downloads on SourceForge.