Re. Static or Dynamic security and vulnerability scanning tools for smart contracts - Go, Node.js and Java Contract APIs #fabric-chaincode


Bharg Pvr <pvrbharg@...>
 

Dear team,

I am trying to find and put to use - static and/or dynamic security and vulnerability scanning tools for smart contracts - Go, Node.js and Java language Contract APIs with current versions of HLF chaincode programs [v2.3.2, v2.2.x and Beta v2.4.0].

Can you please point me to anything anyone may know? and I would gratefully forward thank for your help.

Best wishes.


Marcos Sarres
 

I have used Sonar Qube in the past , but had few results, just some semantic and syntax tips.

 

Regards,

 

Marcos Sarres | CEO | +55 61 98116 7866

 

 

De: fabric@... <fabric@...> Em nome de Bharg Pvr
Enviada em: domingo, 22 de agosto de 2021 21:46
Para: fabric@...
Assunto: [Hyperledger Fabric] Re. Static or Dynamic security and vulnerability scanning tools for smart contracts - Go, Node.js and Java Contract APIs #fabric-chaincode

 

Dear team,

I am trying to find and put to use - static and/or dynamic security and vulnerability scanning tools for smart contracts - Go, Node.js and Java language Contract APIs with current versions of HLF chaincode programs [v2.3.2, v2.2.x and Beta v2.4.0].

Can you please point me to anything anyone may know? and I would gratefully forward thank for your help.

Best wishes.


Baohua Yang
 

This one focuses on Go chaincode: https://github.com/sivachokkapu/revive-cc.


On Mon, Aug 23, 2021 at 4:48 AM Marcos Sarres <marcos.sarres@...> wrote:

I have used Sonar Qube in the past , but had few results, just some semantic and syntax tips.

 

Regards,

 

Marcos Sarres | CEO | +55 61 98116 7866

 

 

De: fabric@... <fabric@...> Em nome de Bharg Pvr
Enviada em: domingo, 22 de agosto de 2021 21:46
Para: fabric@...
Assunto: [Hyperledger Fabric] Re. Static or Dynamic security and vulnerability scanning tools for smart contracts - Go, Node.js and Java Contract APIs #fabric-chaincode

 

Dear team,

I am trying to find and put to use - static and/or dynamic security and vulnerability scanning tools for smart contracts - Go, Node.js and Java language Contract APIs with current versions of HLF chaincode programs [v2.3.2, v2.2.x and Beta v2.4.0].

Can you please point me to anything anyone may know? and I would gratefully forward thank for your help.

Best wishes.



--
Best wishes!

Baohua Yang