Reviewdog🐶 Automated code review tool integrated with any code analysis tools regardless of programming language
Stars: ✭ 4,541 (+6886.15%)
GosecGolang security checker
Stars: ✭ 5,694 (+8660%)
SemgrepLightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Stars: ✭ 5,668 (+8620%)
Pep8speaksA GitHub app to automatically review Python code style over Pull Requests
Stars: ✭ 546 (+740%)
Sonar Php 🐘 SonarPHP: PHP static analyzer for SonarQube & SonarLint
Stars: ✭ 288 (+343.08%)
StacoanStaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.
Stars: ✭ 707 (+987.69%)
qodana-action⚙️ Scan your Java, Kotlin, PHP, Python, JavaScript, TypeScript projects at GitHub with Qodana
Stars: ✭ 112 (+72.31%)
Php Parser🌿 NodeJS PHP Parser - extract AST or tokens (PHP5 and PHP7)
Stars: ✭ 400 (+515.38%)
Rubocop PerformanceAn extension of RuboCop focused on code performance checks.
Stars: ✭ 340 (+423.08%)
Phpdoc ParserNext-gen phpDoc parser with support for intersection types and generics
Stars: ✭ 569 (+775.38%)
PylintIt's not just a linter that annoys you!
Stars: ✭ 3,733 (+5643.08%)
BanditBandit is a tool designed to find common security issues in Python code.
Stars: ✭ 3,763 (+5689.23%)
Sonar DotnetCode analyzer for C# and VB.NET projects https://redirect.sonarsource.com/plugins/vbnet.html
Stars: ✭ 466 (+616.92%)
ChronosChronos - A static race detector for the go language
Stars: ✭ 272 (+318.46%)
Rubocop PackagingA RuboCop extension focused on enforcing upstream best practices and coding conventions.
Stars: ✭ 29 (-55.38%)
Android-CICDThis repo demonstrates how to work on CI/CD for Mobile Apps 📱 using Github Actions 💊 + Firebase Distribution 🎉
Stars: ✭ 37 (-43.08%)
Preallocprealloc is a Go static analysis tool to find slice declarations that could potentially be preallocated.
Stars: ✭ 419 (+544.62%)
jt toolsRuby on Rails Continuous Deployment Ecosystem to maintain Healthy Stable Development
Stars: ✭ 13 (-80%)
Standard🌟 JavaScript Style Guide, with linter & automatic code fixer
Stars: ✭ 26,433 (+40566.15%)
freshli-libA tool for collecting historical metrics about a project's dependencies
Stars: ✭ 12 (-81.54%)
EngineDroidefense: Advance Android Malware Analysis Framework
Stars: ✭ 386 (+493.85%)
SharpenVisual Studio extension that intelligently introduces new C# features into your existing codebase
Stars: ✭ 351 (+440%)
OpenStaticAnalyzerOpenStaticAnalyzer is a source code analyzer tool, which can perform deep static analysis of the source code of complex systems.
Stars: ✭ 19 (-70.77%)
PhanPhan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
Stars: ✭ 5,194 (+7890.77%)
Sonar Java☕️ SonarSource Static Analyzer for Java Code Quality and Security
Stars: ✭ 745 (+1046.15%)
PmdAn extensible multilanguage static code analyzer.
Stars: ✭ 3,667 (+5541.54%)
Security Code ScanVulnerability Patterns Detector for C# and VB.NET
Stars: ✭ 550 (+746.15%)
PytypeA static type analyzer for Python code
Stars: ✭ 3,545 (+5353.85%)
DevreplayA linter that replay your developing style
Stars: ✭ 39 (-40%)
Awesome StandardDocumenting the explosion of packages in the standard ecosystem!
Stars: ✭ 300 (+361.54%)
Phpcs Security Auditphpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code
Stars: ✭ 525 (+707.69%)
CheckstyleCheckstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
Stars: ✭ 6,481 (+9870.77%)
NullawayA tool to help eliminate NullPointerExceptions (NPEs) in your Java code with low build-time overhead
Stars: ✭ 3,035 (+4569.23%)
Rubocop RailsA RuboCop extension focused on enforcing Rails best practices and coding conventions.
Stars: ✭ 433 (+566.15%)
sonar-esql-pluginSonar plugin to analyze ESQL-sourcecode of IBM Integration Bus projects
Stars: ✭ 26 (-60%)
Flake8The official GitHub mirror of https://gitlab.com/pycqa/flake8
Stars: ✭ 1,112 (+1610.77%)
unimportA linter, formatter for finding and removing unused import statements.
Stars: ✭ 119 (+83.08%)
SouffleSoufflé is a variant of Datalog for tool designers crafting analyses in Horn clauses. Soufflé synthesizes a native parallel C++ program from a logic specification.
Stars: ✭ 426 (+555.38%)
SonarjsSonarSource Static Analyzer for JavaScript and TypeScript
Stars: ✭ 696 (+970.77%)
analysis-netStatic analysis framework for .NET programs.
Stars: ✭ 19 (-70.77%)
static-code-analysis-pluginA plugin to simplify Static Code Analysis on Gradle. Not restricted to, but specially useful, in Android projects, by making sure all analysis can access the SDK classes.
Stars: ✭ 36 (-44.62%)
Cfmtcfmt is a tool to wrap Go comments over a certain length to a new line.
Stars: ✭ 28 (-56.92%)
pyanStatic call graph generator. The official Python 3 version. Development repo.
Stars: ✭ 186 (+186.15%)
WalaT.J. Watson Libraries for Analysis
Stars: ✭ 395 (+507.69%)
detekt-hintDetection of design principle violations in Kotlin as a plugin to detekt.
Stars: ✭ 63 (-3.08%)
EslintFind and fix problems in your JavaScript code.
Stars: ✭ 19,665 (+30153.85%)
Kube ScoreKubernetes object analysis with recommendations for improved reliability and security
Stars: ✭ 1,128 (+1635.38%)
TscancodeA static code analyzer for C++, C#, Lua
Stars: ✭ 1,112 (+1610.77%)
Eslint PluginESLint configurations and additional rules for me
Stars: ✭ 19 (-70.77%)
JackhammerJackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
Stars: ✭ 633 (+873.85%)