This project is a simple Language Server Protocol (LSP) connector to integrate the Codyze static code analyzer into the Eclipse IDE. Codyze analyzes Java and C/C++ source files for vulnerabilities, especially for the incorrect usage of cryptograhic libraries, such as Bouncycastle and Botan. To integrate the Codyze analysis server, this plugin sends source files opened in Eclipse over LSP to the analysis server and displays any findings as "problem markers" in Eclipse.
To build an unsigned jar, simply run:
mvn package
To build a signed jar, enable the sign profile and pass keystore parameters:
mvn install -Psign -Dsign.alias=<alias of signing key> -Dsign.storepass=<password> -Dsign.keypass=<password> -Dsign.keystore=<path to keystore file>
The maven wagon plugin will deploy the build artifacts of the codyze-eclipse-update module to an Eclipse P2 update site. To define the credentials to login to the server you can add an entry fo the user credentials to your local ~/m2/settings.xml file:
<settings xmlns="http://maven.apache.org/SETTINGS/1.0.0"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://maven.apache.org/SETTINGS/1.0.0
http://maven.apache.org/xsd/settings-1.0.0.xsd">
<localRepository/>
<interactiveMode/>
<usePluginRegistry/>
<offline/>
<pluginGroups/>
<servers>
<server>
<id>p2Repo</id>
<username>youruser</username>
<password>yourpassword</password>
</server>
</servers>
<mirrors/>
<proxies/>
<profiles/>
<activeProfiles/>
</settings>
After releasing an application or several plug-ins, the version number should be increased. If you do not use pomless builds, there are two locations where version numbers are defined. On the one hand the pom.xml file and on the other hand the MANIFEST.MF file.
This can be done easily by using the Tycho Versions Plugin:
# setting the version in pom.xml and MANIFEST.MF files
mvn org.eclipse.tycho:tycho-versions-plugin:set-version -DnewVersion=X.Y.Z -Dtycho.mode=maven
Eclipse icon made by Swifticons from Flaticon.