QuliceQuality Police for Java projects
Stars: β 250 (+127.27%)
Debt-ManagerA personal app to store people that owe you money or you owe money to. "Mo Money Mo Problems" π΅ - The Notorious B.I.G. π
Stars: β 22 (-80%)
quliceQuality Police for Java projects: aggregator of Checkstyle, PMD, and SpotBugs
Stars: β 286 (+160%)
DiktatStrict coding standard for Kotlin and a custom set of rules for detecting code smells, code style issues and bugs
Stars: β 196 (+78.18%)
vscode-checkstyleHaxe Checkstyle extension for Visual Studio Code
Stars: β 24 (-78.18%)
analysis-modelA library to read static analysis reports into a Java object model
Stars: β 74 (-32.73%)
static-code-analysis-pluginA plugin to simplify Static Code Analysis on Gradle. Not restricted to, but specially useful, in Android projects, by making sure all analysis can access the SDK classes.
Stars: β 36 (-67.27%)
Flake8The official GitHub mirror of https://gitlab.com/pycqa/flake8
Stars: β 1,112 (+910.91%)
Securify2Securify v2.0
Stars: β 92 (-16.36%)
Clj KondoA linter for Clojure code that sparks joy.
Stars: β 1,083 (+884.55%)
Static AnalysisβοΈ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.
Stars: β 9,310 (+8363.64%)
Violations LibJava library for parsing report files from static code analysis.
Stars: β 94 (-14.55%)
CombInteractive code auditing and grep tool in Emacs Lisp
Stars: β 58 (-47.27%)
IkosStatic analyzer for C/C++ based on the theory of Abstract Interpretation.
Stars: β 1,368 (+1143.64%)
Sea DsaA new context, field, and array-sensitive heap analysis for LLVM bitcode based on DSA.
Stars: β 90 (-18.18%)
Pysonar2PySonar2: an advanced semantic indexer for Python
Stars: β 1,074 (+876.36%)
IntellidroidA targeted input generator for Android that improves the effectiveness of dynamic malware analysis.
Stars: β 46 (-58.18%)
StoatSTatic (LLVM) Object file Analysis Tool
Stars: β 44 (-60%)
Sast ScanFully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure DevOps, Google CloudBuild, VS Code and Visual Studio. No server required!
Stars: β 104 (-5.45%)
SquealerTelling tales on you for leaking secrets!
Stars: β 97 (-11.82%)
DomtresatDominator Tree LLVM Pass to Test Satisfiability
Stars: β 42 (-61.82%)
Quality ChecksGradle plugin which includes Checkstyle, FindBugs, and PMD basic configuration.
Stars: β 38 (-65.45%)
CodecheckerCodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy
Stars: β 1,209 (+999.09%)
Sonar Swiftsonar-swift.SonarQube iOS Plugin, Support Objective-C And Swift, Support Infer (SonarQube iOS 代η ζ«ζζδ»ΆοΌζ―ζ Objective-C ε Swift οΌζ―ζ Infer η»ζε―Όε
₯ ) base on https://github.com/Idean/sonar-swift
Stars: β 70 (-36.36%)
AmdhAndroid Mobile Device Hardening
Stars: β 95 (-13.64%)
Terraform Security ScanRun a security scan on your terraform with the very nice https://github.com/liamg/tfsec
Stars: β 64 (-41.82%)
PanopticonA libre cross-platform disassembler.
Stars: β 1,376 (+1150.91%)
SobelowSecurity-focused static analysis for the Phoenix Framework
Stars: β 1,103 (+902.73%)
CxxctpDEPRECATED. USE INSTEAD github.com/blockspacer/flextool
Stars: β 58 (-47.27%)
GopherciGopherCI was a project to help you maintain high-quality Go projects, by checking each GitHub Pull Request, for backward incompatible changes, and a suite of other third party static analysis tools.
Stars: β 105 (-4.55%)
SpoonSpoon is a metaprogramming library to analyze and transform Java source code (up to Java 15). π₯ is made with β€οΈ, π» and β¨. It parses source files to build a well-designed AST with powerful analysis and transformation API.
Stars: β 1,078 (+880%)
FlorentinoFast Static File Analysis Framework
Stars: β 92 (-16.36%)
CognicryptCogniCrypt is an Eclipse plugin that supports Java developers in using Java Cryptographic APIs.
Stars: β 50 (-54.55%)
ApisanAPISan: Sanitizing API Usages through Semantic Cross-Checking
Stars: β 46 (-58.18%)
Pestπ Primitive Erlang Security Tool
Stars: β 79 (-28.18%)
Php Language ServerPHP Implementation of the VS Code Language Server Protocol πβπ₯
Stars: β 1,019 (+826.36%)
Analyzerπ Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more
Stars: β 108 (-1.82%)
ClairVulnerability Static Analysis for Containers
Stars: β 8,356 (+7496.36%)
PhpinspectionseaA Static Code Analyzer for PHP (a PhpStorm/Idea Plugin)
Stars: β 1,211 (+1000.91%)
CryptoanalysisCogniCrypt_SAST: CrySL-to-Static Analysis Compiler
Stars: β 36 (-67.27%)
CodeanalysisAndroidιζ代η εζ
Stars: β 31 (-71.82%)
Cfmtcfmt is a tool to wrap Go comments over a certain length to a new line.
Stars: β 28 (-74.55%)
Befa LibraryHigh-level library for executable binary file analysis
Stars: β 12 (-89.09%)
BapBinary Analysis Platform
Stars: β 1,385 (+1159.09%)
Phpstan DrupalExtension for PHPStan to allow analysis of Drupal code.
Stars: β 97 (-11.82%)
Php codesnifferPHP_CodeSniffer is a set of two PHP scripts; the main phpcs script that tokenizes PHP, JavaScript and CSS files to detect violations of a defined coding standard, and a second phpcbf script to automatically correct coding standard violations. PHP_CodeSniffer is an essential development tool that ensures your code remains clean and consistent.
Stars: β 9,004 (+8085.45%)
PhpqaDocker image that provides static analysis tools for PHP
Stars: β 853 (+675.45%)
Mobile Security Framework MobsfMobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Stars: β 10,212 (+9183.64%)
Checkstyle ActionRun Java checkstyle with reviewdog in github actions
Stars: β 26 (-76.36%)
Sonarondockerπ³ π‘ Docker way of running SonarQube + any DB
Stars: β 25 (-77.27%)
UnimportA linter, formatter for finding and removing unused import statements.
Stars: β 96 (-12.73%)
RadonVarious code metrics for Python code
Stars: β 1,193 (+984.55%)