449 Open source projects that are alternatives of or similar to Rubysonar

Analyzer: checks whether HTTP response body is closed and a re-use of TCP connection is not blocked.

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

PhpCodeAnalyzer scans codebase and analyzes which non-built-in php extensions used

Policeman's Forbidden API Checker

⚗️ Adds code analysis to Laravel improving developer productivity and code quality.

SonarJS rules for ESLint

Spoon is a metaprogramming library to analyze and transform Java source code (up to Java 15). 🥄 is made with ❤️, 🍻 and ✨. It parses source files to build a well-designed AST with powerful analysis and transformation API.

A static code analysis tool for the Elixir language with a focus on code consistency and teaching.

Pluggable TypeScript and JavaScript linter

SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.

nodejsscan is a static security code scanner for Node.js applications.

PHP Implementation of the VS Code Language Server Protocol 🆚↔🖥

An extensible multilanguage static code analyzer.

A plugin to simplify Static Code Analysis on Gradle. Not restricted to, but specially useful, in Android projects, by making sure all analysis can access the SDK classes.

A library for detecting swapped arguments in function calls, and a Clang Static Analyzer plugin used to demonstrate the library.

PySonar2: an advanced semantic indexer for Python

Various code metrics for Python code

Analyses and reports testability issues of a php codebase

TypeScript Compiler API wrapper for static analysis and programmatic code changes.

An Android base app with loads of cool libraries/configuration NOT MAINTAINED

Toolkit for enriching and speeding up static malware analysis

A Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)

Java code analysis and linting with SQL

Release snapshots of the Frama-C platform for source code analysis

njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.

Static Analyzer for LLVM bitcode based on Abstract Interpretation

Setup scripts for my Malware Analysis VMs

Validate and visualize dependencies. Your rules. JavaScript, TypeScript, CoffeeScript. ES6, CommonJS, AMD.

The leading static analyzer for Perl. Configurable, extensible, powerful.

Converts JavaScript to TypeScript and TypeScript to better TypeScript.

PHPStan rules for detecting usage of deprecated classes, methods, properties, constants and traits.

Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code

Checks syntax of reStructuredText and code blocks nested within it

A static analyzer for Java, C, C++, and Objective-C

Dynamic definitions and types provider for ruby static analysis

Gradle plugin for PIT Mutation Testing

Feram finds & fixes bugs in your commits

PHPMD is a spin-off project of PHP Depend and aims to be a PHP equivalent of the well known Java tool PMD. PHPMD can be seen as an user friendly frontend application for the raw metrics stream measured by PHP Depend.

A parser and source code analyzer for PL/SQL and Oracle SQL.

Soot - A Java optimization framework

Datalog compiler in Rust as a procedural macro

A list of computer-science readings I recommend

Java Code Static Metrics (Cohesion, Coupling, etc.)

Static code analysis for CFML (a linter)

A Psalm plugin for Laravel

A code-completion & code-comprehension server

Argus static analysis framework

GCC plugin that embeds CPython inside the compiler

Command line tool to validate configuration files

A tool to automatically fix PHP Coding Standards issues

Scanning APK file for URIs, endpoints & secrets.

Automated code reviews via mutation testing - semantic code coverage.

GitHub action to set up PHP with extensions, php.ini configuration, coverage drivers, and various tools.

Generate a privacy policy for your iOS app

Semgrep rules registry

The Java Disassembler

Standalone linter for ABAP

This repo aims at providing practical examples on how to use r2frida

Manage localization with static analysis. 🔍

C code refactoring browser