The SWAMP is a publicly available, open source, no-cost service for continuous software assurance and static code analysis. Use multiple tools to regularly scan software at mir-swamp.org or download SWAMP-in-a-Box for on-premises software assurance. Plug-ins are available for Eclipse, Jenkins, and Git/Subversion.
Updates to the SWAMP’s Java CLI plug-in have been released to GitHub. The Java CLI is a Java library and a command line interface that provides many common SWAMP operations. Java CLI version 1.5.0 includes several usability improvements and options.