| Open source code has always been favored by software developers and enterprises because of its advantages of low cost and easy use.With the rise of Git Hub and other open source hosting platforms in recent years,open source code in the process of software development occupies an increasing proportion.However,with a large number of references to open source code in software development process,the code defects in open source code are inherited by enterprise application software,resulting in a series of unexpected software security vulnerabilities.Aiming at the problem that there are a lot of code flaws in open source code,which threatens the software security of enterprise application software,this paper designs and implements a defect detection system for open source code,which implements defect detection and defect association rules management.The design of this system adopts MVC mode.The whole architecture is divided into four layers.The display layer is built by Bootstrap front-end framework,and AJAX is responsible for data transmission;the interface layer is in the form of Restful API;the application layer is built by SSM framework;and the data layer is built by My SQL database.After the completion of the system,more than 3000 items from Git Hub were detected.The total number of lines of code,86615 files and 67 kinds of defects were detected.The total number of defects was 461615.The defect detection system constructed in this paper realizes the defect detection of open source code,which can effectively reduce the security risk of subsequent software development.This paper also makes statistical analysis and correlation analysis on the detected defects.The analysis results can reflect the defect distribution of open source code on Git Hub to a certain extent. |
PDF Full Text Request