The FindBugs open source software audit project is teaming up with Fortify Software to centralize Java code review and improve the quality of programs based on Sun Microsystems' recently GPL'ed programming platform.
Though some have raised questions as to the wisdom of exposing security holes and other imperfections in the code, the project has been well-received thus far.
LinuxInsider.com reports that Java Open Review launched this week with 10 open source projects participating. Fortify co-founder Brian Chess says most open source projects welcome reviews like JOR simply because they mean there are "more eyeballs on their code."
The U.S. Department of Homeland Security funded a similar open source software audit earlier this year that was conducted by Coverity, Symantec and Stanford University. The review tested the 30 most popular open source projects.