Coverity Scan: Apache Tomcat

Project Name Apache Tomcat
Lines of code analyzed 258,554
On Coverity Scan since Aug 13, 2014
Last build analyzed 3 months ago
   
Language Java
Repository URL https://github.com/apache/tomcat.git
Homepage URL http://tomcat.apache.org/
License N/A

Want to view defects or help fix defects?

 Add me to project

Analysis Metrics

Version: 10.1.19-dev-f3b48f83

Jan 15, 2024
Last Analyzed
258,554
Lines of Code Analyzed
0.29
Defect Density

Defect changes since previous build dated Aug 10, 2023

16
Newly detected
135
Eliminated

Defects by status for current build

1,219
Total defects
75
Outstanding
787
Fixed

Note: Defect density is measured by the number of defects per 1,000 lines of code.

Analysis Metrics per Components

Component Name Pattern Ignore Line of Code Defect density
WebSocket .*/org/apache/tomcat/websocket/.* No 8,447 0.12
Jasper .*/org/apache/jasper/.* No 26,761 0.07
Catalina .*/org/apache/catalina/.* No 102,595 0.28
Coyote .*/org/apache/coyote/.* No 15,850 0.38
EL .*/org/apache/el/.* No 11,740 0.00
JULI .*/org/apache/juli/.* No 1,580 0.00
DBCP fork .*/org/apache/tomcat/dbcp/.* No 19,751 0.81
Tomcat JDBC .*/jdbc-pool/.* No 7,466 0.00
Web apps .*/webapps/.* No 4,101 0.73
Jakarta APIS .*/jakarta/.* No 10,054 0.00
Fileupload .*/org/apache/tomcat/util/http/fileupload/.* No 2,550 0.78
Naming .*/org/apache/naming/.* No 2,572 0.00
Other .* No 45,391 0.35

CWE Top 25 defects

ID CWE-Name Number of Defects
79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 7
Loading...

Loading...

Loading...

Loading...

Loading...

About Coverity Scan Static Analysis

Find and fix defects in your C/C++, Java, JavaScript or C# open source project for free.

Coverity Scan tests every line of code and potential execution path. The root cause of each defect is clearly explained, making it easy to fix bugs.

Would you like to view the project defects, or help improve its quality by fixing defects?

 Add me to project

About Synopsys

Communities and resources