NoBug is a library which provides assertions, logging statements, and annotations for C and C++ programs. It includes pre-/post-condition and invariant checks, as well as generic assertions. Checks are enabled based on build-levels and scope tags. It also includes debugger support (valgrind), dumping of data structures, logging your application's activities, runtime customizable logging via environment variables, different logging targets (ringbuffer, stderr, syslog, debugger, etc.), and annotation of your source code regarding known bugs, things to do, and planned things. It can track resources and detect deadlocks.
Flawfinder searches through source code looking for potential security flaws. It will provide a list of potential security flaws, sorted by risk, with the most potentially dangerous flaws shown first. This risk level depends not only on the function, but on the values of the parameters of the function. Flawfinder ignores text inside comments and strings.
Clover makes the gathering and analysis of code coverage metrics as painless as possible. It features include tight integration with the Jakarta Ant build tool and accurate, configurable coverage recording. It gathers Method, Statement, and Branch coverage data. Compile-time properties and source level directives allow for precise control over the coverage gathering process. Coverage data can be viewed in XML, HTML, or via a Swing GUI. Report-time options allow for the exclusion of particular statement types from coverage analysis. Plugins for the Eclipse, NetBeans, JDeveloper, JBuilder, and IntelliJ IDEs are provided.
Sonar enables you to collect, analyze, and report metrics on source code. Sonar not only offers consolidated reporting on and across projects throughout time, but a central place to manage code quality. With no complex infrastructure, Sonar fulfills needs in terms of code quality, whether it is to make an audit or implement a continuous improvement process.
Ozibug is a platform-independent, Web-based bug tracking system that can be installed and run straight out of the box on any Java servlet capable platform. It can be used to manage the reporting of bugs and tracking of their progress from discovery through to resolution. It provides standard features such as file attachments, multiple module support, email notifications, custom reports, and RSS feeds. For those who require more flexibility, it also offers fine grained access control, database storage, pluggable authentication, an incoming mail gateway, and customizable appearance, email notifications, and reference data.
Lint4j ("Lint for Java") is a static Java source code analyzer that detects locking and threading issues, performance and scalability problems, and checks complex contracts such as Java serialization by performing type, data flow, and lock graph analysis. Lint4j features command line, Ant, Maven, Eclipse, and Emacs integration.
ACL2 is a mathematical logic, programming language, and mechanical theorem prover based on the applicative subset of Common Lisp. It is an "industrial-strength" version of the NQTHM or Boyer/Moore theorem prover, and has been used for the formal verification of commercial microprocessors, the Java Virtual Machine, interesting algorithms, and so forth.
Savane is a Web-based Free Software hosting system, originally based on SourceForge 2.0. It currently includes issue tracking, project and member management, mailing lists, and individual account maintenance. The issue tracking handles bugs, tasks, and support. The issue tracker's fields ware configurable in many ways: mandatory of not, shown to users according to their role in a group, and with transition management.