Advantages

Professional

• Provides more than 3,000 check rules.
• Provides multi-dimensional quality statistics reports, such as quality gates.

Accurate

• Locates reported defects under fix guidance.
• Enables you to customize check rule sets to target at issues that you pay more attention to.

Comprehensive

• Supports multiple mainstream development languages, such as Java, C++, JavaScript, Go, Python, C#, TypeScript, CSS, HTML, PHP, Lua, Rust, Shell, and Kotlin.
• Supports code guideline, security, code repetition rate, and cyclomatic complexity checks.
• Supports CWE, Huawei, OWASP top 10, ISO 5055, SANS top 25, CERT, and MISRA security standards.

Easy to Use

• Checks code in hybrid languages.
• Allows you to run configured tasks by one click, filter issues in batches, and quick handle issues by severity or category.

Code Security Check

Scenario

• Checks code quality and security issues automatically in the software development phase, supports built-in security guidelines, requirements, and software production workflows, helps enterprises secure software production.
• Provides in-depth code security check capabilities to help government cloud operators and large enterprises manage and control ISV software security quality and build a supply chain security system.

Capability

• Analyzes taints and checks across functions and files.
• Checks for top security vulnerabilities, such as injection and access key leakage.
• Supports programming guidelines and is compatible with CWE, Huawei, OWASP top 10, ISO 5055, SANS top 25, CERT, and MISRA standards.