Before I wish you all for Happy New Year and Happy Holiday, I would like to remind you to scan your source code for SQL Injection and Cross-site scripting (XSS). Well, Microsoft release Code Analysis Tool.Net (CAT.Net) middle of December 2008. Previously, FXCop can only scan for SQL Injection but not XSS. Due to the rising AJAX application deployment over the cloud, XSS become one of the highly rated attack on the cloud.
You can download the tools here.