lintsLint all your JavaScript, CSS, HTML, Markdown and Dockerfiles with a single command
Stars: β 14 (-89.06%)
Sbt Dependency CheckSBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). π
Stars: β 187 (+46.09%)
Nodejsscannodejsscan is a static security code scanner for Node.js applications.
Stars: β 1,874 (+1364.06%)
InsiderStatic Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).
Stars: β 216 (+68.75%)
WhispersIdentify hardcoded secrets and dangerous behaviours
Stars: β 66 (-48.44%)
ExakatThe Exakat Engine : smart static analysis for PHP
Stars: β 346 (+170.31%)
CflintStatic code analysis for CFML (a linter)
Stars: β 156 (+21.88%)
PurifyAll-in-one tool for managing vulnerability reports from AppSec pipelines
Stars: β 72 (-43.75%)
Wokeβ Detect non-inclusive language in your source code.
Stars: β 190 (+48.44%)
D ScannerSwiss-army knife for D source code
Stars: β 221 (+72.66%)
mllint`mllint` is a command-line utility to evaluate the technical quality of Python Machine Learning (ML) projects by means of static analysis of the project's repository.
Stars: β 67 (-47.66%)
pahoutA pair programming partner for writing better PHP. Pahout means PHP mahout π
Stars: β 43 (-66.41%)
Protoc Gen LintA plug-in for Google's Protocol Buffers (protobufs) compiler to lint .proto files for style violations.
Stars: β 221 (+72.66%)
ReviewdogπΆ Automated code review tool integrated with any code analysis tools regardless of programming language
Stars: β 4,541 (+3447.66%)
DetektStatic code analysis for Kotlin
Stars: β 4,169 (+3157.03%)
RedbotREDbot is lint for HTTP.
Stars: β 475 (+271.09%)
Security ToolsCollection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.
Stars: β 509 (+297.66%)
Config LintCommand line tool to validate configuration files
Stars: β 118 (-7.81%)
Phpdoc ParserNext-gen phpDoc parser with support for intersection types and generics
Stars: β 569 (+344.53%)
ShellcheckShellCheck, a static analysis tool for shell scripts
Stars: β 27,211 (+21158.59%)
HadolintDockerfile linter, validate inline bash, written in Haskell
Stars: β 6,284 (+4809.38%)
TerrascanDetect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Stars: β 2,687 (+1999.22%)
Tslintπ¦ An extensible linter for the TypeScript language
Stars: β 5,922 (+4526.56%)
Gradle Lint PluginA pluggable and configurable linter tool for identifying and reporting on patterns of misuse or deprecations in Gradle scripts.
Stars: β 473 (+269.53%)
Sonar DotnetCode analyzer for C# and VB.NET projects https://redirect.sonarsource.com/plugins/vbnet.html
Stars: β 466 (+264.06%)
Pep8speaksA GitHub app to automatically review Python code style over Pull Requests
Stars: β 546 (+326.56%)
Kube Scankube-scan: Octarine k8s cluster risk assessment tool
Stars: β 566 (+342.19%)
Jsprimea javascript static security analysis tool
Stars: β 556 (+334.38%)
Rubocop RspecCode style checking for RSpec files
Stars: β 603 (+371.09%)
Awesome LintersA community-driven list of awesome linters.
Stars: β 439 (+242.97%)
Gg ShieldDetect secret in source code, scan your repo for leaks. Find secrets with GitGuardian and prevent leaked credentials. GitGuardian is an automated secrets detection & remediation service.
Stars: β 708 (+453.13%)
SonarjsSonarSource Static Analyzer for JavaScript and TypeScript
Stars: β 696 (+443.75%)
BrakemanA static analysis security vulnerability scanner for Ruby on Rails applications
Stars: β 6,281 (+4807.03%)
Dependency TrackDependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
Stars: β 718 (+460.94%)
Awesome Go LintersA curated list of awesome Go linters. More than 60 linters and tools!
Stars: β 801 (+525.78%)
SonartsStatic code analyzer for TypeScript
Stars: β 776 (+506.25%)
Cfn nagLinting tool for CloudFormation templates
Stars: β 808 (+531.25%)
SalusSecurity scanner coordinator
Stars: β 441 (+244.53%)
Phplintπ A tool that can speed up linting of php files by running several lint processes at once.
Stars: β 646 (+404.69%)
Sonar JavaβοΈ SonarSource Static Analyzer for Java Code Quality and Security
Stars: β 745 (+482.03%)
Sonarondockerπ³ π‘ Docker way of running SonarQube + any DB
Stars: β 25 (-80.47%)
Ansible Lint ActionGitHub Action for running ansible-lint as part of your workflows! [ https://github.com/marketplace/actions/ansible-lint ]
Stars: β 124 (-3.12%)
Flake8The official GitHub mirror of https://gitlab.com/pycqa/flake8
Stars: β 1,112 (+768.75%)
Clj KondoA linter for Clojure code that sparks joy.
Stars: β 1,083 (+746.09%)
Static AnalysisβοΈ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.
Stars: β 9,310 (+7173.44%)
ReapsawReapsaw is a continuous security devsecops tool, which helps in enabling security into CI/CD Pipeline. It supports coverage for multiple programming languages.
Stars: β 37 (-71.09%)
Mobile Security Framework MobsfMobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Stars: β 10,212 (+7878.13%)
Bag Of HoldingAn application to assist in the organization and prioritization of software security activities.
Stars: β 114 (-10.94%)
PhpinspectionseaA Static Code Analyzer for PHP (a PhpStorm/Idea Plugin)
Stars: β 1,211 (+846.09%)
CodecheckerCodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy
Stars: β 1,209 (+844.53%)
Atom Linter AlexLinter plugin using alex to catch insensitive, inconsiderate writing
Stars: β 87 (-32.03%)
DockleContainer Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start
Stars: β 1,713 (+1238.28%)
Cfmtcfmt is a tool to wrap Go comments over a certain length to a new line.
Stars: β 28 (-78.12%)
StylelintA mighty, modern linter that helps you avoid errors and enforce conventions in your styles.
Stars: β 9,350 (+7204.69%)