Instantiations Doubles Security Audit Rules with CodePro AnalytiX Upgrade

Share Article

Version 5.6 helps meet security policy compliance while exposing high-risk runtime vulnerabilities as code is written; Also adds support for IBM® Rational Application Developer® 7.5 and improvements to JUnit test generation

The further you get into the software development process, the more painful it is to fix errors, bugs, and security vulnerabilities. CodePro will help developers detect, report and repair code defects by monitoring as they write code or during the build process.

Instantiations, Inc., a leading provider of Eclipse-based commercial software solutions to improve software quality and productivity, today announced an upgrade to its comprehensive code quality product, CodePro AnalytiX™. Through intense automation of audits, metrics, and best practices, CodePro AnalytiX ensures superior software quality and maximum developer productivity throughout the entire code development cycle. With this upgrade, Instantiations more than doubles the number of security audit rules to 150, bringing the industry's most comprehensive Java code auditing library to over 1,100 rules.

In addition to the CodePro upgrade, Instantiations has posted updates to its entire Eclipse-based product line, including CodePro Profiler™, RCP Developer™, WindowBuilder™ Pro, and WindowTester™ Pro.

"Software quality and security are key business differentiators, and CodePro offers the industry's most advanced, OWASP-based security auditing, JUnit testing, static analysis and more to help businesses maintain a competitive edge from the code level," said Mike Taylor, CEO of Instantiations and Eclipse Foundation board member. "By strengthening applications automatically at the developer's desktop, businesses can greatly reduce the chance of major security incidents while demonstrating compliance to requirements such as PCI. It's much more expensive to fix errors the further you get into the software development lifecycle."

"Developers at companies of all sizes are now being required to address security vulnerabilities as they write code, and it's a natural fit to expand the number of audit rules in CodePro to help them find and fix potential security defects before going to production," said Eric Clayberg, Instantiations senior vice-president of product development, and co-author of 'Eclipse: Building Commercial
Quality Plug-ins.'
"The further you get into the software development process, the more painful it is to fix errors, bugs, and security vulnerabilities. CodePro will help developers detect, report and repair code defects by monitoring as they write code or during the build process."

What's New in CodePro AnalytiX v 5.6
Extensive security rules have been added in the categories of Language Semantics, Struts and Configuration Files (Ant, Ivy, Maven and WebSphere®), while significantly expanding other categories including API Usage, Authentication, EJB Security, File Usage, Tainted User Input and more.

In addition to addressing security vulnerabilities at the source, other key enhancements to CodePro AnalytiX v.5.6 include:

  • Support for newly-released IBM Rational Application Developer (RAD) 7.5
  • A new utility for converting supported FindBugs and PMD rule sets into CodePro AnalytiX audit rule sets
  • Enhanced JUnit test generation to generate tests for EJB3 entity and session beans.

Instantiations products continue to support prior versions of Eclipse and IDEs built upon Eclipse to meet varied customer needs.

Pricing and Availability
CodePro AnalytiX desktop version is $1,299 per developer. CodePro AnalytiX server edition is also available and includes one year of upgrades, maintenance and technical support. Discounts are available for multiple licenses or combined product purchases. Product upgrades are available at no cost to customers with current support agreements. For information on pricing please email Download a 14-day, full-feature trial evaluation from

About Instantiations
Based in Portland, Ore., Instantiations is a leading innovator of Eclipse-based solutions and focuses its products and services on improving quality, productivity and time-to-market for global software development organizations. Led by a team of internationally-recognized pioneers in Java software technology, Instantiations is a founding member of the Eclipse Foundation and an IBM Business Partner with a line of products for Eclipse, IBM Rational®, JBuilder® and MyEclipse™. The company is named as one the fastest-growing Oregon companies three years running and has been ranked among the top 100 companies influencing software development by SD Times two consecutive years. For more information, visit or call +1-503-598-4900.

CodePro AnalytiX, WindowBuilder, Swing Designer, SWT Designer, GWT Designer, RCP Developer and WindowTester are trademarks of Instantiations, Inc. Java is a trademark of Sun Microsystems. All other trademarks are the properties of their respective companies.


Share article on social media or email:

View article via:

Pdf Print

Contact Author

Visit website