Yasca is a program that looks for security vulnerabilities, code-quality, performance, and conformance to best practices in program source code. It integrates other open source programs, including FindBugs, PMD, JLint, JavaScript Lint, PHPLint, Cppcheck, and Pixy to scan certain file types, as well as custom scanners written for Yasca. It is a command-line tool, with reports generated in HTML, CSV, XML, SQLite, and other formats.
