529 Open source projects that are alternatives of or similar to phpstan-webmozart-assert

Security-focused static analysis for the Phoenix Framework

DEPRECATED. USE INSTEAD github.com/blockspacer/flextool

Spoon is a metaprogramming library to analyze and transform Java source code (up to Java 15). 🥄 is made with ❤️, 🍻 and ✨. It parses source files to build a well-designed AST with powerful analysis and transformation API.

RAML Linter

CogniCrypt is an Eclipse plugin that supports Java developers in using Java Cryptographic APIs.

APISan: Sanitizing API Usages through Semantic Cross-Checking

🦩 Tools for Go projects

PHP Implementation of the VS Code Language Server Protocol 🆚↔🖥

Enum class reflection extension for PHPStan

Datalog compiler in Rust as a procedural macro

Java Code Static Metrics (Cohesion, Coupling, etc.)

This repo aims at providing practical examples on how to use r2frida

An open format definition for static analysis tools

An HTML generator for Valgrind's Memcheck tool

🐳 📡 Docker way of running SonarQube + any DB

🧘‍♀️ Healthier is an opinionated style agnostic code linter – a friendly companion to Prettier

Java library for parsing report files from static code analysis.

Moved to Polymer/tools monorepo

SonarQube Java Properties Analyzer

This software engineer profile builder turns your code into a detailed list of skills for an online directory of software developers.

Linting tool for CloudFormation templates

An extension of RuboCop focused on code performance checks.

Awesome Python Security resources 🕶🐍🔐

PHPMD is a spin-off project of PHP Depend and aims to be a PHP equivalent of the well known Java tool PMD. PHPMD can be seen as an user friendly frontend application for the raw metrics stream measured by PHP Depend.

Every programmer needs a rubberduck. COM add-in for the VBA & VB6 IDE (VBE).

Scanning APK file for URIs, endpoints & secrets.

Continuous Inspection

Manage localization with static analysis. 🔍

Helper function for exhaustive checks of discriminated unions in TypeScript

Go static program analyser

The Source Code Sniffer is a poor man’s static code analysis tool (SCA) that leverages regular expressions. Designed to highlight high risk functions (Injection, LFI/RFI, file uploads etc) across multiple languages (ASP, Java, CSharp, PHP, Perl, Python, JavaScript, HTML etc) in a highly configurable manner.

Parser for Angular projects.

Radare2 and Frida better together.

Object Calisthenics rules for PHP_CodeSniffer

A tool which performs static analyses on Decision Model Notation (DMN) files to detect bugs

Performant type-checking for python.

Bandit is a tool designed to find common security issues in Python code.

The ESLint custom parser for `.vue` files.

Defund the Police.

TypeScript Compiler API wrapper for static analysis and programmatic code changes.

CodeCharta visualizes multiple code metrics using 3D tree maps.

Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Gradle plugin for PIT Mutation Testing

A LLVM-based static analysis framework.

A static analysis tool for security

Emacs Lisp Static Analyzer

A static analysis and linter tool for Lua

List of Maven examples

Static Analyzer for LLVM bitcode based on Abstract Interpretation

Phantom types for Python.

Soot - A Java optimization framework

ESLint Shareable Config for JSX support in JavaScript Standard Style

A Psalm plugin for Laravel

Detect deeply nested if statements in Go source code

OCCAM: Object Culling and Concretization for Assurance Maximization

`mllint` is a command-line utility to evaluate the technical quality of Python Machine Learning (ML) projects by means of static analysis of the project's repository.

Systemd Linter

Fortran compilers, preprocessors, static analyzers, transpilers, IDEs, build systems, etc.