# FindBugs Reviews **Vendor:** sourceforge **Category:** [Static Code Analysis Tools](https://www.g2.com/categories/static-code-analysis) **Average Rating:** 4.5/5.0 **Total Reviews:** 22 ## About FindBugs Static analysis tool for finding bugs in Java code. ## FindBugs Reviews ### 1. Static Analysis Tool **Rating:** 5.0/5.0 stars **Reviewed by:** Khushbu Y. | Software Developer, Small-Business (50 or fewer emp.) **Reviewed Date:** April 04, 2022 **What do you like best about FindBugs?** I have used Findbugs extensively while working on my thesis project where in it was necessary to detect dodgy code, potential issues related to multithreading and security. Findbugs performed reasonably well in detecting all of these potential issues which might lead to errors in future. **What do you dislike about FindBugs?** It would have been great if some more categories are added to Findbugs ruleset to perform static analysis in a much better way. **What problems is FindBugs solving and how is that benefiting you?** I was working on developing a meta static analysis tool that will provide the end user with potential issues related to the Java programs since there is no single static analyser that could serve the purpose. During my research I found Findbugs to be performing quite well in comparison to other static analysis tools. ### 2. Findbugs Review **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Accounting | Mid-Market (51-1000 emp.) **Reviewed Date:** May 24, 2022 **What do you like best about FindBugs?** It's a superb tool to find defects in Java code. **What do you dislike about FindBugs?** Reporting is quite an old school, they should improvise the reporting of bugs **Recommendations to others considering FindBugs:** Yes, I would surely recommend finding bugs to other people. **What problems is FindBugs solving and how is that benefiting you?** Saves ample amount of time in finding defects in Java code. It saves lot of developer time which can be utilized to solve other business problems. ### 3. FindBugs Integration right from development and unit testing **Rating:** 4.5/5.0 stars **Reviewed by:** Sriram V. | Senior Solutions Architect, Mid-Market (51-1000 emp.) **Reviewed Date:** January 03, 2021 **What do you like best about FindBugs?** Easy IDE integration to fix the issues during development itself. Integration with CI/CD It also shows suggestions on how to ifix the issue during development itself The number of false positive issues raised in find bugs was low when compared to other static code analyzing tools that we used. Time taken for the source code analysis was also very much quick. **What do you dislike about FindBugs?** Issue explanation can be a bit more detailed like showing some common issue examples. Will be nice if findbugs includes more features to spot performance related issues. **What problems is FindBugs solving and how is that benefiting you?** Bad coding practise, security issues and correctness of the code are the issues we are trying to solve during development itself. This makes the code review a little easier to the team leads who do the review. Customer Confidence Improves when we shows findbugs report as one of the evidence for code scanning. The Ranking feature allows us to prioritise and focus on the high priority bugs immediately. ### 4. Review the Bugger **Rating:** 4.5/5.0 stars **Reviewed by:** Sandeep C. | Senior solution Integrator, Mid-Market (51-1000 emp.) **Reviewed Date:** December 08, 2020 **What do you like best about FindBugs?** The user interface which can be embedded with every possible IDE and OS is the best part. We can fix the issues in any environment and check the status before deploying the application in server in you local is the best i like which i see it as developer friendly. **What do you dislike about FindBugs?** The bugs are provided with the priority but the priority of few bugs should be decided by the application developer and so the default priority provided by the findbugs may not be accurate at times. **Recommendations to others considering FindBugs:** I use FIndbugs and other two code quality tools in my applcation as a java developer. coming to the ease of using i prefer Findbugs always. if i fix all my issues in findbugs it leads to resolving the other issues getting resolved in other two quality tools. **What problems is FindBugs solving and how is that benefiting you?** The problems related to the performance of the applications which may look small in developer stage but may cause major issues at the time of production like Thread dumps,memory leaks,null pointers etc etc the major benefit includes the standard of the code which we get used to while continuously working on bug fixing ### 5. Clean Build **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.) **Reviewed Date:** December 11, 2020 **What do you like best about FindBugs?** Yes I have used the the find bugs tool personally in one of the project I worked.It helps us to maintain the green build and allows the co-workers to check-in the code without any issue.It helps us to remove the unused objects and unwarranted code, in simple it keeps the code clean and build green. **What do you dislike about FindBugs?** It would have better if it works a bit similar to the sonar cube code analyser.So that a single tool will do the multiple jobs. **What problems is FindBugs solving and how is that benefiting you?** After implementing the new logic or modifying the existing logic.To ensure the implemented or modification code doesn’t have the unused objects or dead code which will break the build and eventually be the deadlock to check in for coworkers ### 6. One of the best static code analysis tool **Rating:** 5.0/5.0 stars **Reviewed by:** Ayan P. | Application Development Senior Analyst, Enterprise (> 1000 emp.) **Reviewed Date:** October 22, 2020 **What do you like best about FindBugs?** Find bug comes preloaded with IntelliJ and Eclipse, two ide s I heavily use for my day to day development. FindBug allows me to spot potential NPE issues as well as spotty codes unnecessary variables. Which sometimes goes un-noticed. Also it warns against potential memory leaks. We use FindBug as part of our ci/cd pipeline. **What do you dislike about FindBugs?** Identified bugs explanation can be better. In pojo classes warning related to date and array properties are properly shown. But these warnings can be easily avoidable using some spotty workarounds. Also sometimes these findings are not relevant and makes code complex unnecessarily. Although we can supress these warnings but better analysis and detection cane be provided over these cases. **What problems is FindBugs solving and how is that benefiting you?** Code quality, find potentially hidden issues in code, remove unnecessary code blocks Code is cleaner and in line with java good coding practise specifications. ### 7. Must to have in your Dev set up **Rating:** 5.0/5.0 stars **Reviewed by:** Udit T. | Software Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** December 01, 2020 **What do you like best about FindBugs?** Easily pluggable with widely used IDE's Detects issues in a vast dev setup User can get to know vulnerable code blocks in a project Navigation is easier to error prone areas **What do you dislike about FindBugs?** Sometimes, only find a subset of issues sometimes description for an issue is not detailed enough which makes it difficult to extract the exact issue . **Recommendations to others considering FindBugs:** should integrate with in their dev setup to provide a quality product. **What problems is FindBugs solving and how is that benefiting you?** Enforcing java best practices in an IDE. Integrated with jenkins build to find impacted code blocks. Provides heads up to the developer about their possible impact or severity. ### 8. Helpful tool for the Developers **Rating:** 4.5/5.0 stars **Reviewed by:** Surendra Singh C. | Software Senior Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** December 01, 2020 **What do you like best about FindBugs?** Comes in handy in Eclipse and popular development IDEs. Enforce java best practices. Detects error-prone code areas. Easily pluggable. **What do you dislike about FindBugs?** Should automate in every build. Errors are sometimes very much in detail and need some time to locate. **What problems is FindBugs solving and how is that benefiting you?** This is a must-have plugin in my development setup due to various reasons like - In detail error finding. You start noticing the small coding best practices which sometimes you tend to miss. Small issues don't go unnoticed. ### 9. My Goto Tool for quickly finding static code analysis **Rating:** 4.0/5.0 stars **Reviewed by:** Koteswara R. | Principal Architect, Mid-Market (51-1000 emp.) **Reviewed Date:** January 02, 2021 **What do you like best about FindBugs?** The ease of usage of the tool and the comprehensive view. **What do you dislike about FindBugs?** A better user friendly interface with more filters. **Recommendations to others considering FindBugs:** Use it at regular intervals during development cycle and iron out the issues identified. **What problems is FindBugs solving and how is that benefiting you?** Automated code review. Identify pitfalls in the code where parallel development happens involving so many developers. ### 10. Find Bugs Is Pretty good as compared to Other static code analysis tool **Rating:** 4.5/5.0 stars **Reviewed by:** Mukesh K. | Senior Software Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** December 22, 2020 **What do you like best about FindBugs?** User Friendly Interface, and easy to use framework **What do you dislike about FindBugs?** Priority of few bugs should be done by developer **Recommendations to others considering FindBugs:** I do use findbugs everyting during development phase and i also recommend other developers as well because of its vast uses. **What problems is FindBugs solving and how is that benefiting you?** Serialization Issues in code, Code quality and lot many ### 11. Useful tool to minimize bugs **Rating:** 4.5/5.0 stars **Reviewed by:** Guilherme S. | Software Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** January 02, 2021 **What do you like best about FindBugs?** It's easy and useful tool that run with a simple command. Make my work easy on my day by day, user friendly. **What do you dislike about FindBugs?** Sometimes find not relevant bugs, should be configured by developer. **What problems is FindBugs solving and how is that benefiting you?** Clean and quality code, show unused code blocks. ### 12. Had used Findbugs for our Android TV application. **Rating:** 3.5/5.0 stars **Reviewed by:** Pon maheswaran K. | Consultant, Enterprise (> 1000 emp.) **Reviewed Date:** December 23, 2020 **What do you like best about FindBugs?** Finding the bugs quickly and generate the possible result with multiple category. **What do you dislike about FindBugs?** Need more use case for finding the static code bugs. **What problems is FindBugs solving and how is that benefiting you?** NULL check, String security check, Exception handling etc.. ### 13. FindBugs helps to protect as well from security breaches & Code quality. **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.) **Reviewed Date:** January 05, 2021 **What do you like best about FindBugs?** FindBugs helps to protect as well from security breaches & Code quality. **What do you dislike about FindBugs?** Sometime in a static code quality check it reduces the results & again report back like it was there.... so it needs to be consistent **What problems is FindBugs solving and how is that benefiting you?** I am using it for code quality, report generate, define severity level, to measure security check & to protect the app from unwanted attacks. ### 14. Must have for developers/coders/Code reviewers **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Enterprise (> 1000 emp.) **Reviewed Date:** October 27, 2020 **What do you like best about FindBugs?** Easy to use, easy to plugin, understandable insights **What do you dislike about FindBugs?** more security issues should be covered so that it will be more efficient in all aspects **Recommendations to others considering FindBugs:** FindBug is a good tool to be used in development cycle or during code reviews. FindBug plugins for CI tools and IDEs are also available which that makes the use real easy. FindBug identifies and provides very good insight about common software bugs and also provides some support for security issues that can be fixed at code level. **What problems is FindBugs solving and how is that benefiting you?** We used Findug for identifying common coding problems. ### 15. Boon for a developer **Rating:** 4.5/5.0 stars **Reviewed by:** Yatharth D. | Associate Consultant, Enterprise (> 1000 emp.) **Reviewed Date:** December 21, 2020 **What do you like best about FindBugs?** Categories and systematic view of bugs, that needa to be catered by developers. **What do you dislike about FindBugs?** Jenkins support for findbugs have been removed in new releases. **What problems is FindBugs solving and how is that benefiting you?** bugs scanning ### 16. Made it easy to locate basic errors in code and help determine best way to fix them. **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Small-Business (50 or fewer emp.) **Reviewed Date:** December 05, 2020 **What do you like best about FindBugs?** Gives details on why there is an error so you can fix it. **What do you dislike about FindBugs?** Can become too focused on locating code errors, that you lose sight of how best to preventing runtime errors. **What problems is FindBugs solving and how is that benefiting you?** Some of the best uses is simple context errors such as misspellings or leaving out a period or semicolon. FindBugs makes it easier to locate simpler problems like that without having to browse the entire document. ### 17. One of the most popular static analysis **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.) **Reviewed Date:** December 25, 2020 **What do you like best about FindBugs?** It certainly helps improvement of code quality. It’s recommended to use it along with SonarQube in your CI. **What do you dislike about FindBugs?** I encountered a few false positives. But it’s something that cannot be helped. **What problems is FindBugs solving and how is that benefiting you?** Maintaining code quality of such a huge enterprise application. As more people are involved in the project, automatic static analysis like FindBugs is necessary. ### 18. Findbugs Review **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** December 09, 2020 **What do you like best about FindBugs?** Good tool find bugs in code and report earlier.. **What do you dislike about FindBugs?** there is no good UI , we need to depend on other third party tool to configure the report .. It will be good if the tool has all in single package without depending on other tools. **What problems is FindBugs solving and how is that benefiting you?** 1, Java code issues 2, Vulnerability issues 3. Checkstyle 4. SQL issues.. etc.., ### 19. Reliable Open-source Static Code Analysis **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Computer Software | Enterprise (> 1000 emp.) **Reviewed Date:** November 25, 2020 **What do you like best about FindBugs?** Free. Integration with IDE and Build Process. Variety of plugins available to integrate like FindSecBugs. **What do you dislike about FindBugs?** Requires manual integration and changing build files. Can take effort for visual customization in reporting. **Recommendations to others considering FindBugs:** In the beginning, it will require few iterations to fine-tune. Later it will run for years without any issues. **What problems is FindBugs solving and how is that benefiting you?** Code quality and security issues ### 20. Test Analyst **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Internet | Mid-Market (51-1000 emp.) **Reviewed Date:** December 20, 2020 **What do you like best about FindBugs?** Easy to use, can find some easily overlooked problems **What do you dislike about FindBugs?** Accuracy needs to be improved. Many low-priority errors can sometimes be annoying **What problems is FindBugs solving and how is that benefiting you?** Some spelling errors, public methods are abstractly reused ### 21. Nice tool/plugin for finding bugs that couldn’t be caught by static analysis tools **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Publishing | Small-Business (50 or fewer emp.) **Reviewed Date:** October 23, 2020 **What do you like best about FindBugs?** The best thing about it that it find some of very important bugs like NPE, Encoding issues, unclosed streams etc **What do you dislike about FindBugs?** Sometimes find documentation difficult to understand. But mostly its nice **What problems is FindBugs solving and how is that benefiting you?** Catch most common bugs during dev cycle ### 22. it has been really helpful **Rating:** 2.5/5.0 stars **Reviewed by:** Prasiddhi J. | Director Of Transportation, Research, Small-Business (50 or fewer emp.) **Reviewed Date:** April 26, 2018 **What do you like best about FindBugs?** i like that it really helps me with my projects **What do you dislike about FindBugs?** sometimes it is hard to use, especially for those who don't have much experience in programming **What problems is FindBugs solving and how is that benefiting you?** i am debugging for my codes ## FindBugs Discussions - [FindBugs is an open-source static code analyser created by Bill Pugh and David Hovemeyer which detects possible bugs in Java programs. Potential errors are classified in four ranks: scariest, scary, troubling and of concern.](https://www.g2.com/discussions/35402-findbugs-is-an-open-source-static-code-analyser-created-by-bill-pugh-and-david-hovemeyer-which-detects-possible-bugs-in-java-programs-potential-errors-are-classified-in-four-ranks-scariest-scary-troubling-and-of-concern) - 1 upvote - [View FindBugs pricing details and edition comparison](https://www.g2.com/products/findbugs/reviews?section=pricing&secure%5Bexpires_at%5D=2026-05-15+19%3A17%3A42+-0500&secure%5Bsession_id%5D=81429d1f-f1b0-4c65-9e61-cd45f14bec59&secure%5Btoken%5D=a15d4151507fcfb75da9f2c87ba4ffe0a706a81fb5c002bdbf7bca545111527d&format=llm_user) ## FindBugs Features **Agentic AI - Static Code Analysis** - Adaptive Learning - Natural Language Interaction - Proactive Assistance ## Top FindBugs Alternatives - [SonarQube](https://www.g2.com/products/sonarqube/reviews) - 4.4/5.0 (139 reviews) - [Gearset DevOps](https://www.g2.com/products/gearset-devops/reviews) - 4.7/5.0 (279 reviews) - [OpenText Static Application Security Testing](https://www.g2.com/products/opentext-static-application-security-testing/reviews) - 4.5/5.0 (21 reviews)