I just committed version 0.63 in sourceforge subversion repository. I don’t plan to officially release a JAR file… a lot of changes in just a week… It makes more sense to wait for 0.80 release in March… Next 5 Februrary I’ll take a speech at Italian Infosecurity in Milan where I’ll present more in depth Jericho static code review engine features…
@work we are not so busy at the moment, so I can spent some time hacking over orizon and the code I wrote is simply amazing.
I’m refactoring all org.owasp.orizon.core classes to embeded in each core element (such as a class, a method or a variable representation) methods:
Jericho engine is growing faster and Source class is day by day lighter and easy to read and to understand. I’m really excited about these hacking days…
Just 2 days ago I released Orizon 0.60 with a lot of improvements.
First of all the default library reached the psychological limit of 30 security checks (it includes 34 security checks).
I introduced also a reduce() routine that enable people in writing checks based upon method return type or variable data type.
Today I wrote down the piece of code that enable source file line number discovering during translation from Java to XML… I know it is more fancy if Orizon will display also the position inside the source file instead of just complaining about an error.
I’m really fine with the latest 2 weeks work..