As per any development project, coding standards have to be employed to ensure quality. There are several standards that are out there and documenting an exhaustive list here is not the intent. However, the general standards mentioned at https://ace.apache.org/docs/coding-standards.html is what will be followed.
In addition, tools like PMD, FindBugs, Sonar will be used to detect any obvious deviations. Eclipse and IntelliJ IDEs have also built-in tools that can be easily used to expose code quality metrics.
Code Security Scanning
There are couple of tools that will be used to do code security scanning.
- Acunetix - Web security vulnerability scanner.
- OWASP - This is security scanner for Java applications.
The reports will be made available on a regular basis.