Enhancing CryptoGuards Deployability for Continuous Software Security Scanning. (arXiv:2201.07651v1 [cs.CR])

The increasing development speed via Agile may introduce overlooked security
steps in the process, with an example being the Iowa Caucus application.
Verifying the protection of confidential information such as social security
numbers requires security at all levels, providing protection through any
connected applications. CryptoGuard is a static code analyzer for Java. This
program verifies that developers do not leave vulnerabilities in their
applications. The program aids the developer by identifying cryptographic
misuses such as hard-coded keys, weak program hashes, …

continuous scanning security software software security