Home / Acquia Source Code Analysis - DrupalCon Preview

Acquia Source Code Analysis - DrupalCon Preview

Source code analysis brings new security and best practice recommendations for the code of your website, as part of Acquia's Insight service for Drupal sites. This new analysis system can alert you to possible web vulnerabilities like Cross Site Scripting and SQL injection that an attacker could exploit to gain control of your website or steal private data. Alerts provide a description of the vulnerability and the exact file and line where the exploit could occur so your team has the information they need to keep your site safe. Built on PHP tokenizing technology, this analysis solution provides a more robust and capable scan with actionable results. Try the Acquia CodeScan module out on your site during our preview release period for DrupalCon. Read more about source code analysis and our plans for it with Acquia Insight.

At DrupalCon? Come by our booth for a preview.

Hosted on Acquia Cloud? Get started right away! (Recommended)

  • Download Acquia CodeScan module
    • Download for Drupal 7 (tgz, zip) or Drupal 6 (tgz, zip)
    • Place on your site under sites/all/modules and enable
  • Test the feature on your Acquia Cloud dev or stage environment
    • Commit the module and push to a non-production environment
    • SSH into your environment
  • Navigate to the directory for some custom code on your site
  • Type drush acs in your terminal and follow the steps
  • If you have the Acquia Connector module enabled you’ll also see results on Insight

Not hosted on Acquia Cloud? Try for free now with Acquia Cloud at acquia.com/free and then continue with the above steps.

Or, you can try out static code analysis on your own machine or server with a few extra steps:
Prerequisites: Linux or Mac OS X, PHP 5.2 or greater and PEAR

  • Run: pear install PHP_CodeSniffer
  • Download Acquia CodeScan module and enable for your site
    • Download for Drupal 7 (tgz, zip) or Drupal 6 (tgz, zip)
    • Place on your site under sites/all/modules and enable
  • Navigate to the directory of some custom code on your site
  • Type drush acs in your terminal and follow the steps
  • If you have the Acquia Connector module enabled you’ll also see results on Insight