Source Code Review
A very comprehensive documentation for working on source code review of applications
Bug Patterns - Find Security Bugs
JSHint, a JavaScript Code Quality Tool
https://owasp.org/www-pdf-archive/OWASP_AlphaRelease_CodeReviewGuide2.0.pdf
GitHub - returntocorp/semgrep: Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
GitHub
Copy link