399 Open source projects that are alternatives of or similar to Crepe

SQL Server static code analysis rules for SSDT database projects

An analysis tool for Python that blurs the line between testing and type systems.

Code Climate Engine for PHP Code Sniffer

Babel plugin that statically extracts i18next and react-i18next translation keys.

OpenStaticAnalyzer is a source code analyzer tool, which can perform deep static analysis of the source code of complex systems.

Dockerfile linter, validate inline bash, written in Haskell

Integrate SonarQube scanner to GitHub Actions

Vim plugin for executing Python's optional static type checker MyPy (http://mypy-lang.org/)

a javascript static security analysis tool

An IDA_Wrapper for linux, shipped with an Function Identifier. It works well with Driller on static linked binaries.

Fast Static File Analysis Framework

Github mirror of "mediawiki/tools/phan/SecurityCheckPlugin" - our actual code is hosted with Gerrit (please see https://www.mediawiki.org/wiki/Developer_access for contributing)

ShellCheck, a static analysis tool for shell scripts

A open source Python script to perform static analysis on a Malware Binary File (portable executable).

Checks syntax of reStructuredText and code blocks nested within it

Static analysis for CloudFormation templates to identify common misconfiguration

library for importing functions from dlls in a hidden, reverse engineer unfriendly way

nakedret is a Go static analysis tool to find naked returns in functions greater than a specified function length.

🐞 Primitive Erlang Security Tool

A project that uses Binary Ninja and GRAKN.AI to perform static analysis on binary files with the goal of identifying bugs in software.

Awesome autocompletion, static analysis and refactoring library for python

identypo is a Go static analysis tool to find typos in identifiers (functions, function calls, variables, constants, type declarations, packages, labels).

Gradle plugin for PIT Mutation Testing

WooCommerce function and class declaration stubs for static analysis.

Useful CMake Examples

Configurable XML Doc warnings for ReSharper

A Static Code Analyzer for PHP (a PhpStorm/Idea Plugin)

Work-in-progress tool to reverse unity's IL2CPP toolchain.

PHP Architecture Tester - Easy to use architectural testing tool for PHP ✔️

CSS complexity linter

Dynamic definitions and types provider for ruby static analysis

TIRO - A hybrid iterative deobfuscation framework for Android applications

IDAPython Made Easy

A Github Action for ShellCheck

A set of custom fixers for PHP CS Fixer

Go Taint CHeck Analyser

FlowDroid Static Data Flow Tracker

Universal test framework for cli tools [mainly for code analyzers and compilers]

PHPMD is a spin-off project of PHP Depend and aims to be a PHP equivalent of the well known Java tool PMD. PHPMD can be seen as an user friendly frontend application for the raw metrics stream measured by PHP Depend.

PhpCodeAnalyzer scans codebase and analyzes which non-built-in php extensions used

SonarJS rules for ESLint

PHPStan based SQL static analysis and type inference for the database access layer

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

unimport is a Go static analysis tool to find unnecessary import aliases.

Security scanner coordinator

Infer mvn deps from sources

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

PHPStan extension for webmozart/assert

Golang security checker

OCCAM: Object Culling and Concretization for Assurance Maximization

A service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification

A static analysis tool for finding errors in PHP applications

A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications

Java Code Static Metrics (Cohesion, Coupling, etc.)

A Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)

Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code

Toolkit for enriching and speeding up static malware analysis

Securify v2.0

Next-gen phpDoc parser with support for intersection types and generics

Staticcheck's official GitHub Action