576 Open source projects that are alternatives of or similar to Infer

A list of computer-science readings I recommend

PHP_CodeSniffer is a set of two PHP scripts; the main phpcs script that tokenizes PHP, JavaScript and CSS files to detect violations of a defined coding standard, and a second phpcbf script to automatically correct coding standard violations. PHP_CodeSniffer is an essential development tool that ensures your code remains clean and consistent.

A RuboCop extension focused on enforcing Rails best practices and coding conventions.

PHP Magic Number Detector

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

Soufflé is a variant of Datalog for tool designers crafting analyses in Horn clauses. Soufflé synthesizes a native parallel C++ program from a logic specification.

A static analysis tool for finding errors in PHP applications

PySonar2: an advanced semantic indexer for Python

Allows old code to use new standards

Manage localization with static analysis. 🔍

GCC plugin that embeds CPython inside the compiler

Code pattern analysis for JS

Various code metrics for Python code

Show some ❤️ to Node.js process errors

NsDepCop is a static code analysis tool that helps to enforce namespace dependency rules in C# projects. No more unplanned or unnoticed dependencies in your system.

ClangKit provides an Objective-C frontend to LibClang. Source tokenization, diagnostics and fix-its are actually implemented.

CogniCrypt is an Eclipse plugin that supports Java developers in using Java Cryptographic APIs.

C code refactoring browser

APISan: Sanitizing API Usages through Semantic Cross-Checking

ESLint plugin with rules that help validate proper imports.

STatic (LLVM) Object file Analysis Tool

A service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification

A hackable malware sandbox for the 21st Century

Type Analyzer for JavaScript

Documenting the explosion of packages in the standard ecosystem!

Dominator Tree LLVM Pass to Test Satisfiability

IDAPython plugin for finding function strings recursively

A linter that replay your developing style

ESLint Shareable Config for React/JSX support in JavaScript Standard Style

Bringing clang-tidy magic to Visual Studio C++ developers.

A tool for refactoring code related to feature flag APIs

The implementation of the Rascal meta-programming language (including interpreter, type checker, parser generator, compiler and JVM based run-time system)

A tool to verify that your files are in harmony with your .editorconfig

KubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts to ensure the applications represented in them adhere to best practices.

SonarQube plugin for Kotlin

R package for analyzing other R packages via graph representations of their dependencies

Go fearless SQL. Sqlvet performs static analysis on raw SQL queries in your Go code base.

sonar-swift.SonarQube iOS Plugin, Support Objective-C And Swift, Support Infer (SonarQube iOS 代码扫描插件，支持 Objective-C 和 Swift ，支持 Infer 结果导入 ) base on https://github.com/Idean/sonar-swift

Binee: binary emulation environment

Links to tools by subject

High-level library for executable binary file analysis

A Golang tool that does static analysis, unit testing, code review and generate code quality report.

The strictest and most opinionated python linter ever!

Analyzer of PHP code to search issues with deprecated functionality in newer interpreter versions.

Validate and visualize dependencies. Your rules. JavaScript, TypeScript, CoffeeScript. ES6, CommonJS, AMD.

Define and run pattern-based custom linting rules.

Static program analysis for TIP

A regex based source code scanner.

📗 How to write cross-platform Node.js code

🌿 NodeJS PHP Parser - extract AST or tokens (PHP5 and PHP7)

🚀 A command line tool aims to improve front-end engineer workflow and standard, powered by TypeScript.

GopherCI was a project to help you maintain high-quality Go projects, by checking each GitHub Pull Request, for backward incompatible changes, and a suite of other third party static analysis tools.

Easy setup of static analysis tools for Android and Java projects.

Performing security tests inside your CI

Argus static analysis framework

The Hy Transformer

A static code analysis tool for the Elixir language with a focus on code consistency and teaching.

A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.

Kubernetes object analysis with recommendations for improved reliability and security