release-request-e32f3567-b299-4433-aaca-18a62b3f00c0-for-git_oc-dr1-release-3964195 snap-temp-L52500000059616409

Change-Id: If010398557c3a502b72e0c135d3d03075fecda31
author: android-build-team Robot <android-build-team-robot@google.com> 2017-05-02 08:58:40 +0000
committer: android-build-team Robot <android-build-team-robot@google.com> 2017-05-02 08:58:40 +0000
commit: d8b6c10b465fd0471677b2a56d0a8120c908b615 (patch)
tree: a75506878fec8f2ca81a0627ee9047ff1a529f61 /en/security/overview/implement.html
parent: 243f11da189339d6e7c7d642a504c2a10fde3417 (diff)
parent: 70d269ba87f6b03413d56ef21e605be826cfa92a (diff)
download: source.android.com-d8b6c10b465fd0471677b2a56d0a8120c908b615.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/en/security/overview/implement.html b/en/security/overview/implement.html
index bbe1967c..7233a34d 100644
--- a/en/security/overview/implement.html
+++ b/en/security/overview/implement.html
@@ -56,6 +56,9 @@ automated source code review. Best practices:</p>
 application code using the Android SDK and correct any identified issues.</li>
 <li>Native code should be analyzed using an automated tool that can detect
 memory management issues such as buffer overflows and off-by-one errors.</li>
+<li>The Android build system has support for many of the LLVM sanitizers,
+such as AddressSanitizer and UndefinedBehaviorSanitizer which can be used
+for this purpose.</li>
 </ul>
 
 <h3 id="auto-test">Using automated testing</h3>
author	android-build-team Robot <android-build-team-robot@google.com>	2017-05-02 08:58:40 +0000
committer	android-build-team Robot <android-build-team-robot@google.com>	2017-05-02 08:58:40 +0000
commit	d8b6c10b465fd0471677b2a56d0a8120c908b615 (patch)
tree	a75506878fec8f2ca81a0627ee9047ff1a529f61 /en/security/overview/implement.html
parent	243f11da189339d6e7c7d642a504c2a10fde3417 (diff)
parent	70d269ba87f6b03413d56ef21e605be826cfa92a (diff)
download	source.android.com-d8b6c10b465fd0471677b2a56d0a8120c908b615.tar.gz