[ajug-members] Java source analyzer for security holes, memory leaks etc?

[Curt Smith]

Greetings,

Does anyone have a tip for a java (j2ee) source analyzer that would be
run during nightly builds etc that would find security holes or memory
leaks?   I'd guess there's tools that would find the forgotten
conn.close() and resultset.close(), but more thorough and extensive
scanning is also desired.

Thanks,   Curt Smith