Issue No.05 - September/October (2000 vol.17)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/52.877869
Developers and users require some degree of assurance in their applications' security vulnerabilities. The authors have designed a prototype tool, Jslint, to help programmers automatically use existing security knowledge.
John Viega, Gary McGraw, Tom Mutdosch, Edward W. Felten, "Statically Scanning Java Code: Finding Security Vulnerabilities", IEEE Software, vol.17, no. 5, pp. 68-74, September/October 2000, doi:10.1109/52.877869