Download the SourceScout plugin for Android Studio

Download (BETA)

Plugin Overview

Our Android Studio security plugin performs static analysis of Android source code to detect security vulnerabilities. Detecting security vulnerabilities as they are written greatly decreases the cost to fix them. Additionally, educating developers about the safe way to write code has many additional benefits. Penetration testing is very effective at finding vulnerabilities, but it is definitely not the most efficient way to find and remediate vulnerabilities.


SourceScout installs as a plugin for Android Studio.

Within Android Studio, choose File->Settings->Plugins, then select Select Install Plugin from Disk and select the downloaded jar.

The setup is now complete. You will likely see the highest density of issues in the AndroidManifest.xml. You can also view a list of all identified issues by choosing Analyze->Inspect Code… and the issues will be listed under Android Security Issues.


We greatly appreciate all feedback.

Please verify that you are a human*

Send directly.

Please send feedback to