MOMO Code Sec Inspector: Java Static Code Security Audit Plugin with One‑Click Fixes
The MOMO Code Sec Inspector is an open‑source Java static analysis plugin for IntelliJ IDEA that detects security vulnerabilities such as XXE and MyBatis SQL injection during development and offers one‑click remediation, helping teams address risks early in the coding process.
Recently, Momo Security open‑sourced the MOMO Code Sec Inspector, a Java static code security audit plugin designed to detect potential security risks during development and provide one‑click remediation.
The MOMO security team notes that most web security vulnerabilities stem from coding, so they built the plugin for IntelliJ IDEA to help developers identify and fix issues early.
Demo
Demo 1 – detection and one‑click fix of an XXE vulnerability (see image).
Demo 2 – detection and one‑click fix of a MyBatis XML Mapper SQL injection vulnerability (see image).
Plugin Repository
https://gitee.com/mirrors/momo-code-sec-inspector-java
PS: If you find this sharing useful, feel free to like and view.
END
Java Captain
Focused on Java technologies: SSM, the Spring ecosystem, microservices, MySQL, MyCat, clustering, distributed systems, middleware, Linux, networking, multithreading; occasionally covers DevOps tools like Jenkins, Nexus, Docker, ELK; shares practical tech insights and is dedicated to full‑stack Java development.
How this landed with the community
Was this worth your time?
0 Comments
Thoughtful readers leave field notes, pushback, and hard-won operational detail here.