CflintStatic code analysis for CFML (a linter)
Stars: β 156 (+524%)
Forbidden ApisPoliceman's Forbidden API Checker
Stars: β 216 (+764%)
Bento[DEPRECATED] Find Python web-app bugs delightfully fast, without changing your workflow. π±
Stars: β 147 (+488%)
GrepbugsA regex based source code scanner.
Stars: β 118 (+372%)
Walkmod Corewalkmod: an open source tool to fix coding style issues
Stars: β 153 (+512%)
I18n TasksManage translation and localization with static analysis, for Ruby i18n
Stars: β 1,748 (+6892%)
duplexDuplicate code finder for Elixir
Stars: β 20 (-20%)
SputnikStatic code review for your Gerrit patchsets. Runs Checkstyle, PMD, FindBugs, Scalastyle, CodeNarc, JSLint for you!
Stars: β 189 (+656%)
DrekA static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a large application, with an emphasis on identifying development anti-patterns and footguns.
Stars: β 103 (+312%)
RubberduckEvery programmer needs a rubberduck. COM add-in for the VBA & VB6 IDE (VBE).
Stars: β 1,287 (+5048%)
Dg[LLVM Static Slicer] Various program analyses, construction of dependence graphs and program slicing of LLVM bitcode.
Stars: β 242 (+868%)
Perl CriticThe leading static analyzer for Perl. Configurable, extensible, powerful.
Stars: β 149 (+496%)
bolthttpA HTTP Client for CFML
Stars: β 28 (+12%)
TipStatic program analysis for TIP
Stars: β 140 (+460%)
ProgpilotA static analysis tool for security
Stars: β 226 (+804%)
Fb Contriba FindBugs/SpotBugs plugin for doing static code analysis for java code bases
Stars: β 124 (+396%)
sonar-puppetSonarQube plugin for Puppet code.
Stars: β 27 (+8%)
AbaplintStandalone linter for ABAP
Stars: β 111 (+344%)
SpotbugsSpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.
Stars: β 2,569 (+10176%)
UnimportA linter, formatter for finding and removing unused import statements.
Stars: β 96 (+284%)
memcheck-coverAn HTML generator for Valgrind's Memcheck tool
Stars: β 30 (+20%)
PytA Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications
Stars: β 2,061 (+8144%)
CodechartaCodeCharta visualizes multiple code metrics using 3D tree maps.
Stars: β 85 (+240%)
Phpstan Deprecation RulesPHPStan rules for detecting usage of deprecated classes, methods, properties, constants and traits.
Stars: β 160 (+540%)
Pestπ Primitive Erlang Security Tool
Stars: β 79 (+216%)
healthierπ§ββοΈ Healthier is an opinionated style agnostic code linter β a friendly companion to Prettier
Stars: β 78 (+212%)
TajsType Analyzer for JavaScript
Stars: β 150 (+500%)
WpbulletA static code analysis for WordPress (and PHP)
Stars: β 148 (+492%)
cf-mailchimpColdFusion wrapper for the MailChimp 3.0 API
Stars: β 17 (-32%)
RubocopA Ruby static code analyzer and formatter, based on the community Ruby style guide.
Stars: β 11,593 (+46272%)
Reviveπ₯ ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint
Stars: β 3,139 (+12456%)
Sonar PmdβοΈ PMD Plugin for SonarQube
Stars: β 139 (+456%)
Owasp OrizonOwasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
Stars: β 130 (+420%)
CodelyzerStatic analysis for Angular projects.
Stars: β 2,436 (+9644%)
FeramFeram finds & fixes bugs in your commits
Stars: β 122 (+388%)
fiasko broYet another static python code validator
Stars: β 27 (+8%)
NsdepcopNsDepCop is a static code analysis tool that helps to enforce namespace dependency rules in C# projects. No more unplanned or unnoticed dependencies in your system.
Stars: β 114 (+356%)
WhispersIdentify hardcoded secrets and dangerous behaviours
Stars: β 66 (+164%)
PhpstanPHP Static Analysis Tool - discover bugs in your code without running it!
Stars: β 10,534 (+42036%)
tryceratopsA linter to prevent exception handling antipatterns in Python (limited only for those who like dinosaurs).
Stars: β 381 (+1424%)
Npgsql.fsharp.analyzerF# analyzer that provides embedded SQL syntax analysis, type-checking for parameters and result sets and nullable column detection when writing queries using Npgsql.FSharp.
Stars: β 103 (+312%)
Violations LibJava library for parsing report files from static code analysis.
Stars: β 94 (+276%)
messaging-polyglotRabbitMQ Messaging Polyglot with Java, ColdFusion, CommandBox, Groovy and more
Stars: β 18 (-28%)
SourcecodesnifferThe Source Code Sniffer is a poor manβs static code analysis tool (SCA) that leverages regular expressions. Designed to highlight high risk functions (Injection, LFI/RFI, file uploads etc) across multiple languages (ASP, Java, CSharp, PHP, Perl, Python, JavaScript, HTML etc) in a highly configurable manner.
Stars: β 87 (+248%)
cmd-call-graphA simple tool to generate a call graph for calls within Windows CMD (batch) files.
Stars: β 37 (+48%)
TombstoneDead code detection with tombstones for PHP πͺ¦π§
Stars: β 172 (+588%)
stm appThis software engineer profile builder turns your code into a detailed list of skills for an online directory of software developers.
Stars: β 23 (-8%)
lintsLint all your JavaScript, CSS, HTML, Markdown and Dockerfiles with a single command
Stars: β 14 (-44%)
codeclimate-apexmetricsApexMetrics - Code Climate engine for Salesforce [DISCONTINUED use CC PMD instead)
Stars: β 46 (+84%)
Phpstan PhpunitPHPUnit extensions and rules for PHPStan
Stars: β 247 (+888%)
InferA static analyzer for Java, C, C++, and Objective-C
Stars: β 12,823 (+51192%)