PytA Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications
Stars: ✭ 2,061 (-63.94%)
clamStatic Analyzer for LLVM bitcode based on Abstract Interpretation
Stars: ✭ 180 (-96.85%)
progge.rsProgram analysis playground for a simple, imperative language
Stars: ✭ 29 (-99.49%)
InferA static analyzer for Java, C, C++, and Objective-C
Stars: ✭ 12,823 (+124.34%)
BapBinary Analysis Platform
Stars: ✭ 1,385 (-75.77%)
CflintStatic code analysis for CFML (a linter)
Stars: ✭ 156 (-97.27%)
LyraNo description or website provided.
Stars: ✭ 23 (-99.6%)
sasiSignedness-Agnostic Strided-Interval
Stars: ✭ 32 (-99.44%)
Pep8speaksA GitHub app to automatically review Python code style over Pull Requests
Stars: ✭ 546 (-90.45%)
IkosStatic analyzer for C/C++ based on the theory of Abstract Interpretation.
Stars: ✭ 1,368 (-76.07%)
CrabCoRnucopia of ABstractions: a library for building abstract interpretation-based analyses
Stars: ✭ 102 (-98.22%)
Find Sec BugsThe SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
Stars: ✭ 1,748 (-69.42%)
PhasarA LLVM-based static analysis framework.
Stars: ✭ 503 (-91.2%)
sturdySturdy is a library for developing sound static analyses in Haskell.
Stars: ✭ 49 (-99.14%)
inline-plzInline your lint messages
Stars: ✭ 32 (-99.44%)
Detect It EasyProgram for determining types of files for Windows, Linux and MacOS.
Stars: ✭ 2,982 (-47.83%)
SixtyPicalA 6502-oriented low-level programming language supporting advanced static analysis
Stars: ✭ 25 (-99.56%)
Sonar DotnetCode analyzer for C# and VB.NET projects https://redirect.sonarsource.com/plugins/vbnet.html
Stars: ✭ 466 (-91.85%)
analysis-netStatic analysis framework for .NET programs.
Stars: ✭ 19 (-99.67%)
monadic-cfaGeneric implementation of different CFA families based on monadic decomposition
Stars: ✭ 16 (-99.72%)
LinterStatic Analysis Compiler Plugin for Scala
Stars: ✭ 273 (-95.22%)
Static Analysis⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.
Stars: ✭ 9,310 (+62.88%)
PhpqaDocker image that provides static analysis tools for PHP
Stars: ✭ 853 (-85.08%)
PsalmA static analysis tool for finding errors in PHP applications
Stars: ✭ 4,523 (-20.87%)
Crab LlvmStatic Analyzer for LLVM bitcode based on Abstract Interpretation
Stars: ✭ 143 (-97.5%)
SonartsStatic code analyzer for TypeScript
Stars: ✭ 776 (-86.42%)
Sonar Php 🐘 SonarPHP: PHP static analyzer for SonarQube & SonarLint
Stars: ✭ 288 (-94.96%)
DetektStatic code analysis for Kotlin
Stars: ✭ 4,169 (-27.06%)
Dg[LLVM Static Slicer] Various program analyses, construction of dependence graphs and program slicing of LLVM bitcode.
Stars: ✭ 242 (-95.77%)
Codeql GoThe CodeQL extractor and libraries for Go.
Stars: ✭ 224 (-96.08%)
iec-checkerStatic analysis of IEC 61131-3 programs
Stars: ✭ 36 (-99.37%)
WalaT.J. Watson Libraries for Analysis
Stars: ✭ 395 (-93.09%)
localhost-sonarqubeAnalysing source code locally with SonarQube in a Docker environment.
Stars: ✭ 17 (-99.7%)
OCCAMOCCAM: Object Culling and Concretization for Assurance Maximization
Stars: ✭ 20 (-99.65%)
CheckstyleCheckstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
Stars: ✭ 6,481 (+13.38%)
sonarqube-actionIntegrate SonarQube scanner to GitHub Actions
Stars: ✭ 90 (-98.43%)
phan-taint-check-pluginGithub mirror of "mediawiki/tools/phan/SecurityCheckPlugin" - our actual code is hosted with Gerrit (please see https://www.mediawiki.org/wiki/Developer_access for contributing)
Stars: ✭ 21 (-99.63%)
tiroTIRO - A hybrid iterative deobfuscation framework for Android applications
Stars: ✭ 20 (-99.65%)
static-code-analysis-pluginA plugin to simplify Static Code Analysis on Gradle. Not restricted to, but specially useful, in Android projects, by making sure all analysis can access the SDK classes.
Stars: ✭ 36 (-99.37%)
qodana-action⚙️ Scan your Java, Kotlin, PHP, Python, JavaScript, TypeScript projects at GitHub with Qodana
Stars: ✭ 112 (-98.04%)
auraPython source code auditing and static analysis on a large scale
Stars: ✭ 101 (-98.23%)
WotanPluggable TypeScript and JavaScript linter
Stars: ✭ 271 (-95.26%)
SeahornSeaHorn Verification Framework
Stars: ✭ 270 (-95.28%)
Reviewdog🐶 Automated code review tool integrated with any code analysis tools regardless of programming language
Stars: ✭ 4,541 (-20.56%)
SonarqubeContinuous Inspection
Stars: ✭ 6,365 (+11.35%)
SonarjsSonarSource Static Analyzer for JavaScript and TypeScript
Stars: ✭ 696 (-87.82%)
gotchaGo Taint CHeck Analyser
Stars: ✭ 40 (-99.3%)
PylintIt's not just a linter that annoys you!
Stars: ✭ 3,733 (-34.69%)
PytypeA static type analyzer for Python code
Stars: ✭ 3,545 (-37.98%)
PmdAn extensible multilanguage static code analyzer.
Stars: ✭ 3,667 (-35.85%)