Source Code Analysis - OWASP etc


#1

We are currently in a very advanced stage of using kotlin for our software systems. We are obliged to use Secure Code Analysis tools preferably based on source code. We currently use Sonar with find security bugs (https://find-sec-bugs.github.io/).

Will there be any support in the short term for kotlin in this toolset? The alternative begin scanning of bytecode (ie with http://www.veracode.com/).

What’s your take on this matter?