Abstract: A system for determining a vulnerability of source code includes a processor; and non-transitory computer readable media that includes instruction code that causes the processor to receive source code and a selection of one or more code analyzers for detecting vulnerability issues in the source code. The processor executes the one or more code analyzer to generate initial vulnerability data. The initial vulnerability data specifies one or more vulnerable code sections in the source code. The processor communicates the initial vulnerability data to a vulnerability analyzing engine. The vulnerability analyzing engine is configured to identify one or more code sections of the one or more code sections of the initial vulnerability data that correspond to false positives.

Abstract: A system for determining a vulnerability of source code includes a processor; and non-transitory computer readable media that includes instruction code that causes the processor to receive source code and a selection of one or more code analyzers for detecting vulnerability issues in the source code. The processor executes the one or more code analyzer to generate initial vulnerability data. The initial vulnerability data specifies one or more vulnerable code sections in the source code. The processor communicates the initial vulnerability data to a vulnerability analyzing engine. The vulnerability analyzing engine is configured to identify one or more code sections of the one or more code sections of the initial vulnerability data that correspond to false positives.