487 Open source projects that are alternatives of or similar to phpcs-psr4-sniff

APISan: Sanitizing API Usages through Semantic Cross-Checking

A tool for linting and static analysis of Lua code.

🔥 ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint

*DEPRECATED* Symfony extension for PHPStan

PHP Implementation of the VS Code Language Server Protocol 🆚↔🖥

an obfuscation-resilient, highly precise and reliable library detector for Android applications

Parser for Angular projects.

SQL Server static code analysis rules for SSDT database projects

Vulnerability Static Analysis for Containers

Awesome Golang Security resources 🕶🔐

Dlint is a tool for encouraging best coding practices and helping ensure we're writing secure Python code.

🐽 Tuned & very strict coding standards for PHP projects

Vim plugin for executing Python's optional static type checker MyPy (http://mypy-lang.org/)

TypeScript Compiler API wrapper for static analysis and programmatic code changes.

Integrate SonarQube scanner to GitHub Actions

High-level library for executable binary file analysis

An IDA_Wrapper for linux, shipped with an Function Identifier. It works well with Driller on static linked binaries.

A set of utilities for checking Go sources. This repository has migrated to https://gitlab.com/opennota/check

Github mirror of "mediawiki/tools/phan/SecurityCheckPlugin" - our actual code is hosted with Gerrit (please see https://www.mediawiki.org/wiki/Developer_access for contributing)

It's not just a linter that annoys you!

A open source Python script to perform static analysis on a Malware Binary File (portable executable).

Gradle plugin for PIT Mutation Testing

Static analysis for CloudFormation templates to identify common misconfiguration

DEPRECATED -- DevSkim plugin for Sublime Text 3.

nakedret is a Go static analysis tool to find naked returns in functions greater than a specified function length.

Duplicate code finder for Elixir

A project that uses Binary Ninja and GRAKN.AI to perform static analysis on binary files with the goal of identifying bugs in software.

a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities

identypo is a Go static analysis tool to find typos in identifiers (functions, function calls, variables, constants, type declarations, packages, labels).

Soot - A Java optimization framework

WooCommerce function and class declaration stubs for static analysis.

A curated list of awesome Go linters. More than 60 linters and tools!

Configurable XML Doc warnings for ReSharper

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

Work-in-progress tool to reverse unity's IL2CPP toolchain.

Static Analyzer for Solidity

CSS complexity linter

GCC plugin that embeds CPython inside the compiler

TIRO - A hybrid iterative deobfuscation framework for Android applications

Awesome Python Security resources 🕶🐍🔐

A Github Action for ShellCheck

SDA is a rich cross-platform tool for reverse engineering that focused firstly on analysis of computer games. I'm trying to create a mix of the Ghidra, Cheat Engine and x64dbg. My tool will combine static and dynamic analysis of programs. Now SDA is being developed.

Go Taint CHeck Analyser

🚦 An extensible linter for the TypeScript language

Universal test framework for cli tools [mainly for code analyzers and compilers]

Semgrep rules registry

PhpCodeAnalyzer scans codebase and analyzes which non-built-in php extensions used

SonarSource Static Analyzer for JavaScript and TypeScript

PHPStan based SQL static analysis and type inference for the database access layer

A plug-in for Google's Protocol Buffers (protobufs) compiler to lint .proto files for style violations.

An open source script to perform malware static analysis on Portable Executable

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈

Telling tales on you for leaking secrets!

Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.

A static type analyzer for Python code

Extension for PHPStan to allow analysis of Drupal code.

Joint Advanced Defect assEsment for android applications

🐶 Automated code review tool integrated with any code analysis tools regardless of programming language

Program for determining types of files for Windows, Linux and MacOS.