Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.

Stars: ✭ 6,481 (+40406.25%)

Mutual labels: static-analysis

Awesome Python Security

Awesome Python Security resources 🕶🐍🔐

Stars: ✭ 738 (+4512.5%)

Mutual labels: static-analysis

A File Icon

Sublime Text File-Specific Icons for Improved Visual Grepping

Stars: ✭ 767 (+4693.75%)

Mutual labels: sublime-text

Scalastyle

scalastyle

Stars: ✭ 679 (+4143.75%)

Mutual labels: static-analysis

Dagda

a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities

Stars: ✭ 820 (+5025%)

Mutual labels: static-analysis

Sonar Java

☕️ SonarSource Static Analyzer for Java Code Quality and Security

Stars: ✭ 745 (+4556.25%)

Mutual labels: static-analysis

Awesome Go Linters

A curated list of awesome Go linters. More than 60 linters and tools!

Stars: ✭ 801 (+4906.25%)

Mutual labels: static-analysis

Tslint

🚦 An extensible linter for the TypeScript language

Stars: ✭ 5,922 (+36912.5%)

Mutual labels: static-analysis

Brakeman

A static analysis security vulnerability scanner for Ruby on Rails applications

Stars: ✭ 6,281 (+39156.25%)

Mutual labels: static-analysis

Sonarts

Static code analyzer for TypeScript

Stars: ✭ 776 (+4750%)

Mutual labels: static-analysis

Lucario

The best flat theme for Vim, Atom, Sublime Text, Jetbrains Editors, Terminal.app, iTerm, Xcode and XTerm

Stars: ✭ 711 (+4343.75%)

Mutual labels: sublime-text

Rmate

Remote TextMate 2 implemented as shell script

Stars: ✭ 807 (+4943.75%)

Mutual labels: sublime-text

Modern Cpp Template

A template for modern C++ projects using CMake, Clang-Format, CI, unit testing and more, with support for downstream inclusion.

Stars: ✭ 690 (+4212.5%)

Mutual labels: static-analysis

Sublimetext Codeformatter

Code Formatter plugin for ST2/ST3

Stars: ✭ 765 (+4681.25%)

Mutual labels: sublime-text

Sonar Jproperties Plugin

SonarQube Java Properties Analyzer

Stars: ✭ 5 (-68.75%)

Mutual labels: static-analysis

Cfn nag

Linting tool for CloudFormation templates

Stars: ✭ 808 (+4950%)

Mutual labels: static-analysis

Text Pastry

Extend the power of multiple selections in Sublime Text. Modify selections, insert numeric sequences, incremental numbers, generate uuids, date ranges, insert continuously from a word list and more.

Stars: ✭ 782 (+4787.5%)

Mutual labels: sublime-text

View All Similar Projects ➔

DevSkim Sublime Plugin Deprecated

The DevSkim Sublime plugin has been deprecated. Original source code will continue to be available at this location, but no longer maintained.

The core DevSkim project and supported plugins for Visual Studio and VSCode are available at https://github.com/microsoft/devskim.

DevSkim Plugin for Sublime Text

The plugin implements a security linter within the Sublime Text editor, leveraging the rules from the DevSkim repository. It helps software engineers to write secure code by flagging potentially dangerous calls, and gives in-context advice for remediation.

Requirements

The plugin requires Sublime Text 3 (build >= 3114), and will function on Windows, Linux, and MacOS.

Installation

Install this plugin using Package Control from Sublime Text. The package name is DevSkim.

Alternatively, you can clone this repository into your Sublime Text "Packages" folder. For example, under Windows:

cd "%APPDATA%\"Sublime Text 3\Packages"
git clone https://github.com/Microsoft/DevSkim-Sublime-Plugin.git DevSkim

MacOS:

cd ~/"Library/Application Support/Sublime Text 3/Packages"
git clone https://github.com/Microsoft/DevSkim-Sublime-Plugin.git DevSkim

Linux:

cd ~/.config/sublime-text-3/Packages
git clone https://github.com/Microsoft/DevSkim-Sublime-Plugin.git DevSkim

Note if you are using the portable version of Sublime Text, the location will be different. See the Sublime Text documentation for more information.

IMPORTANT If you already have a package called DevSkim installed, either remove this first, or clone this repo to a different folder.

Using DevSkim

By default, DevSkim will run as you type, highlighting code that fails a rule. If you click on a highlighted bit of code, you will see the rule in the status bar.

You can run a full scan by pressing Ctrl-Shift-g, which will result in a popup showing all findings for the file. You can also choose DevSkim: Analyze File from the Command Palette.

Platform support

Operating System:

The plugin has identical behavior across Windows, MacOS, and Linux.

Sublime Text Version:

The plugin requires Sublime Text 3 builds >= 3114.

Settings

You can customize how DevSkim works through the Settings -- User menu item. If you change any settings, you should reload the DevSkim configuration, either by restarting Sublime Text or by running the command DevSkim: Reload Configuration.

Rules System

The plugin supports both built-in and custom rules:

Built-In Rules

Built-in rules come from the DevSkim repository, and should be stored in the DevSkim-Common/rules directory within the DevSkim package directory.

Rules are organized by subdirectory and file, but are flattened internally when loaded.

Each rule contains a set of patterns (strings and regular expressions) to match, a list of file types to apply the rule to, and, optionally, a list of possible code fixes.

Information how writing rules can be found at Writing-Rules

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].

Stars: ✭ 16

Visit Git Page 🔗Visit User Page 🔗Visit Issues Page (4) 🔗