I believe there is also a plugin from the SRT team that does static code analysis. It would be a nice value add during a migration. Certifying ones code to be "safe"

Bruno. 

Sent from my iPhone

On 4 Oct 2014, at 07:11, Lincoln Baxter, III <lincolnbaxter@gmail.com> wrote:

We have our own such functionality provided by the Red Hat "Victims" project. I'm sure we could re-use functionality from that, too: http://github.com/victims 

On Thu, Oct 2, 2014 at 5:08 AM, Brad Davis <bdavis@redhat.com> wrote:
There is also a platform by sonatype that scans apps and reports on vulnerabilities and open source licenses. 


It'd be nice to offer this functionality in the future. 

Brad Davis
Red Hat Consulting
Email: bdavis@redhat.com | c:980.226.7865 |http://www.redhat.com 

On Oct 2, 2014, at 6:51 AM, Ondrej Zizka <ozizka@redhat.com> wrote:


_______________________________________________
windup-dev mailing list
windup-dev@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/windup-dev



--
Lincoln Baxter, III
http://ocpsoft.org
"Simpler is better."
_______________________________________________
windup-dev mailing list
windup-dev@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/windup-dev