478 Open source projects that are alternatives of or similar to Phpstan Deprecation Rules

PHPUnit extensions and rules for PHPStan

⚗️ Adds code analysis to Laravel improving developer productivity and code quality.

Extra strict and opinionated rules for PHPStan

Vulnerability Patterns Detector for C# and VB.NET

SonarSource Static Analyzer for JavaScript and TypeScript

☕️ SonarSource Static Analyzer for Java Code Quality and Security

Static analyzer for C/C++ based on the theory of Abstract Interpretation.

nodejsscan is a static security code scanner for Node.js applications.

Awesome Golang Security resources 🕶🔐

Telling tales on you for leaking secrets!

Gradle plugin for PIT Mutation Testing

Toolkit for enriching and speeding up static malware analysis

Extension for PHPStan to allow analysis of Drupal code.

Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.

Pacman-inspired game, for teaching testing purposes.

Android Mobile Device Hardening

Parser for Angular projects.

Static Analyzer for LLVM bitcode based on Abstract Interpretation

Checks syntax of reStructuredText and code blocks nested within it

Java library for parsing report files from static code analysis.

Babel plugin that statically extracts i18next and react-i18next translation keys.

Release snapshots of the Frama-C platform for source code analysis

Securify v2.0

Fast Static File Analysis Framework

Soot - A Java optimization framework

Dynamic definitions and types provider for ruby static analysis

A new context, field, and array-sensitive heap analysis for LLVM bitcode based on DSA.

Every programmer needs a rubberduck. COM add-in for the VBA & VB6 IDE (VBE).

njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.

The Source Code Sniffer is a poor man’s static code analysis tool (SCA) that leverages regular expressions. Designed to highlight high risk functions (Injection, LFI/RFI, file uploads etc) across multiple languages (ASP, Java, CSharp, PHP, Perl, Python, JavaScript, HTML etc) in a highly configurable manner.

CodeCharta visualizes multiple code metrics using 3D tree maps.

Type Analyzer for JavaScript

A Psalm plugin for Laravel

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

List of Maven examples

Setup scripts for my Malware Analysis VMs

ESLint Shareable Config for JSX support in JavaScript Standard Style

GCC plugin that embeds CPython inside the compiler

a FindBugs/SpotBugs plugin for doing static code analysis for java code bases

Language server for PHP, with powerful static analysis and type inference.

CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy

A parser and source code analyzer for PL/SQL and Oracle SQL.

A set of custom fixers for PHP CS Fixer

Functional, composable, asynchronous, type-safe Python.

Static program analysis for TIP

Feram finds & fixes bugs in your commits

PHP_CodeSniffer is a set of two PHP scripts; the main phpcs script that tokenizes PHP, JavaScript and CSS files to detect violations of a defined coding standard, and a second phpcbf script to automatically correct coding standard violations. PHP_CodeSniffer is an essential development tool that ensures your code remains clean and consistent.

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

A list of computer-science readings I recommend

Various code metrics for Python code

A service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification

Automated code reviews via mutation testing - semantic code coverage.

A regex based source code scanner.

KubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts to ensure the applications represented in them adhere to best practices.

Argus static analysis framework

sonar-swift.SonarQube iOS Plugin, Support Objective-C And Swift, Support Infer (SonarQube iOS 代码扫描插件，支持 Objective-C 和 Swift ，支持 Infer 结果导入 ) base on https://github.com/Idean/sonar-swift

The Hy Transformer

A Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)

walkmod: an open source tool to fix coding style issues

TypeScript Compiler API wrapper for static analysis and programmatic code changes.