JNDI绑定和源代码分析。
要发现任何SQL注入问题,可执行源代码分析。
To find the problem with any SQL injection, perform source code analysis.
CPD项目是PMD 源代码分析工具的一部分。
CheckStyle: CheckStyle是一个开源静态资源代码分析工具。
CheckStyle: CheckStyle is an open source static source code analysis tool.
现有的采用基于源代码分析的漏洞静态检测方法中存在的主要问题是误报率和漏报率较高。
The main problem of existing static vulnerability detection methods based source code analysis is their high false positive and false negative rates.
之后介绍了源代码向抽象数据模型的转化过程,重点阐述了代码抽取模式和系统源代码分析过程;
Then introduced the transformation process that from the source code to the abstract data model. Focus on the code extraction patterns and the analysis of the system source code process.
已经存在一些源代码分析与字节代码分析以及哪种分析提供更好结果的比较,但是该讨论超出了本文的范围。
There has been some analysis of source code versus byte code analysis and which provides the better results, but that discussion is beyond the scope of this article.
Optim DevelopmentStudio使用源代码分析确定应用程序在SQL大纲中显示SQL使用的sql语句。
Optim Development Studio USES source code analysis to identify SQL statements that the application USES to show it in the SQL outline.
词组“源代码静态分析工具”是一个通用的词汇,它表示用于在未执行程序的情况下从源代码提取信息的工具。
The phrase "source-code static analysis tool" is a general term for a tool that extracts information from the source code itself without executing the program.
为了更好地理解以模型为中心的开发的概念,需要退一步回到源代码并且分析系统的行为。
To better understand model-centric development concepts, take a step back from the code and analyze the behaviour of your system.
例如,开发者可以编写他自己的工具来分析IR文件,并生成一些如何优化源代码的总结。
For example, one can write his own tool which analyzes the IR files and generates some conclusions on how the source code should be optimized.
静态分析工具审核一个应用程序的源代码和二进位,弄清楚这个应用程序是如何运行的,以及构建这个行为的数学模型。
Static analysis tools look at the source code and binaries of an application, figure out how the application works, and build mathematical models of that behavior.
AMT会分析源代码以寻找到潜在的迁移问题。
The AMT analyses source code to find potential migration problems.
通过识别潜在的源代码,静态分析工具还能帮助发现资源泄漏,比如无法释放内存或资源。
Static analysis tools also can help to find resource leaks, such as failures to deallocate memory or release resources, by identifying potential source code.
与专用的源代码静态分析工具相比,编译器的此项功能比较有限,但值得一试。
Compared to dedicated source-code static analysis tools, the functionality is usually limited, but worth trying.
例如,维护股票交易网站的金融机构可能要确保公众无权访问他们的私有分析工具的源代码或目标代码。
For example, a financial institution that maintains a stock-trading Web site is likely to ensure that the public does not have access to the source or object code for their proprietary analysis tools.
用表2作为指南,您可以分析发行版本中的不同源代码文件,了解它们是如何工作的。
Using Table 2 as your guide, you can examine the various source code files in the distribution to see how things work.
文章中包含了完整的示例源代码,并带有逐行的代码分析。
Complete source code examples will be included, with line-by-line analysis of what the code is doing.
其静态分析功能分析源代码和字节代码,基于模式以及基于流和基于路径,并且能够跨方法、类和包查找违规行为。
Its static analysis analyzes source code and byte code, is pattern-based as well as flow - and path-based, and is capable of finding rule violations that cross methods, classes, and packages.
只要源代码发生变化,分析可以一直进行,以看看有什么发现。
Analysis can be performed from time to time whenever source code or test code changes, to see what it might uncover.
其次,它强大的分析能力允许完全的代码来回转换,因此对源代码的修改几乎立即反映在图形化编辑器中。
For another, its powerful parsing abilities allow full round-tripping of code, so changes made to the source code are reflected nearly immediately in the graphical editor.
在那里,您必须分析源代码本身以进行修改。
That's where you have to analyze the source code itself to apply your modifications.
最后,一些最前沿的静态分析工具能够从源代码提取设计模式。
Finally, at the frontier of the state-of-the-art, there are static analysis tools capable of extracting design patterns from source code.
如果只是对源代码进行 静态分析,那么最好的选择就是切换到ruby_parser,因为你不需要更改任何代码。
Static Analysis tools that work on source are best served by switching to ruby_parser, mostly because it doesn't require code changes (ruby_parser's output is the same as ParseTree's).
不得不提的两个插件是进行源代码控制的RationalClearCase插件以及静态代码分析工具FindBugs,eBay使用FindBugs来部分验收其所有源代码。
Two which get a mention are the Rational ClearCase plug-in for source-code control and static code analysis tool FindBugs which is used by eBay as part of their acceptance of any source code.
源代码覆盖分析的purecoverage。
这种分析包括计算源代码指标、根据预定义模式筛查潜在的bug和发现是否违反编程约定和规则。
Such analysis includes calculation of source-code metrics, detection of potential bugs based on defined patterns, and discovery of violations of coding conventions and rules.
使用源代码静态分析工具识别检查区域。
Identify areas for review and inspection with a source-code static analysis tool.
为了从StatCVS得到Jikes的报告,需要得到最新的源代码,并生成一个CVS日志文件让StatCVS分析。
In order to get StatCVS reports for Jikes, we need to get the latest source code and generate a CVS log file for StatCVS to analyze.
IBM于今天宣布完成两笔收购:源代码及应用安全公司Ounce Labs和预测分析公司SPSS。
Today, IBM announced two acquisitions: source code and application security company ounce Labs, and SPSS, a provider of predictive analytics.
应用推荐