PhpstanPHP Static Analysis Tool - discover bugs in your code without running it!
Stars: ✭ 10,534 (+310.04%)
Dg[LLVM Static Slicer] Various program analyses, construction of dependence graphs and program slicing of LLVM bitcode.
Stars: ✭ 242 (-90.58%)
FeramFeram finds & fixes bugs in your commits
Stars: ✭ 122 (-95.25%)
Editorconfig CheckerA tool to verify that your files are in harmony with your .editorconfig
Stars: ✭ 119 (-95.37%)
Fb Contriba FindBugs/SpotBugs plugin for doing static code analysis for java code bases
Stars: ✭ 124 (-95.17%)
healthier🧘♀️ Healthier is an opinionated style agnostic code linter – a friendly companion to Prettier
Stars: ✭ 78 (-96.96%)
sbt-findbugsFindBugs static analysis plugin for sbt.
Stars: ✭ 47 (-98.17%)
Violations LibJava library for parsing report files from static code analysis.
Stars: ✭ 94 (-96.34%)
Config LintCommand line tool to validate configuration files
Stars: ✭ 118 (-95.41%)
Njsscannjsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
Stars: ✭ 128 (-95.02%)
RstcheckChecks syntax of reStructuredText and code blocks nested within it
Stars: ✭ 130 (-94.94%)
nestifDetect deeply nested if statements in Go source code
Stars: ✭ 30 (-98.83%)
klaraAutomatic test case generation for python and static analysis library
Stars: ✭ 250 (-90.27%)
go-perfguardCPU-guided performance analyzer for Go
Stars: ✭ 58 (-97.74%)
unimportunimport is a Go static analysis tool to find unnecessary import aliases.
Stars: ✭ 64 (-97.51%)
D ScannerSwiss-army knife for D source code
Stars: ✭ 221 (-91.4%)
identypoidentypo is a Go static analysis tool to find typos in identifiers (functions, function calls, variables, constants, type declarations, packages, labels).
Stars: ✭ 26 (-98.99%)
elm-reviewAnalyzes Elm projects, to help find mistakes before your users find them.
Stars: ✭ 195 (-92.41%)
analysis-modelA library to read static analysis reports into a Java object model
Stars: ✭ 74 (-97.12%)
constybleCSS complexity linter
Stars: ✭ 92 (-96.42%)
OpenStaticAnalyzerOpenStaticAnalyzer is a source code analyzer tool, which can perform deep static analysis of the source code of complex systems.
Stars: ✭ 19 (-99.26%)
gotchaGo Taint CHeck Analyser
Stars: ✭ 40 (-98.44%)
illuaminateVery WIP static analysis for Lua
Stars: ✭ 21 (-99.18%)
golintuiA simple terminal UI for Go linters
Stars: ✭ 73 (-97.16%)
automutateApplies waves of mutations provided by other tools, such as linters or codemods.
Stars: ✭ 13 (-99.49%)
pahoutA pair programming partner for writing better PHP. Pahout means PHP mahout 🐘
Stars: ✭ 43 (-98.33%)
Bento[DEPRECATED] Find Python web-app bugs delightfully fast, without changing your workflow. 🍱
Stars: ✭ 147 (-94.28%)
Freki🐺 Malware analysis platform
Stars: ✭ 285 (-88.91%)
NullawayA tool to help eliminate NullPointerExceptions (NPEs) in your Java code with low build-time overhead
Stars: ✭ 3,035 (+18.14%)
BanditBandit is a tool designed to find common security issues in Python code.
Stars: ✭ 3,763 (+46.48%)
RubocopA Ruby static code analyzer and formatter, based on the community Ruby style guide.
Stars: ✭ 11,593 (+351.27%)
JqlJava code analysis and linting with SQL
Stars: ✭ 148 (-94.24%)
Coalacoala provides a unified command-line interface for linting and fixing all your code, regardless of the programming languages you use.
Stars: ✭ 3,280 (+27.68%)
I18n TasksManage translation and localization with static analysis, for Ruby i18n
Stars: ✭ 1,748 (-31.96%)
Perl CriticThe leading static analyzer for Perl. Configurable, extensible, powerful.
Stars: ✭ 149 (-94.2%)
PhpmdPHPMD is a spin-off project of PHP Depend and aims to be a PHP equivalent of the well known Java tool PMD. PHPMD can be seen as an user friendly frontend application for the raw metrics stream measured by PHP Depend.
Stars: ✭ 1,992 (-22.46%)
Rubocop PerformanceAn extension of RuboCop focused on code performance checks.
Stars: ✭ 340 (-86.77%)
DetektStatic code analysis for Kotlin
Stars: ✭ 4,169 (+62.28%)
SemgrepLightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Stars: ✭ 5,668 (+120.63%)
IsortA Python utility / library to sort imports.
Stars: ✭ 4,377 (+70.38%)
Go ToolsStaticcheck - The advanced Go linter
Stars: ✭ 4,317 (+68.04%)
InferA static analyzer for Java, C, C++, and Objective-C
Stars: ✭ 12,823 (+399.14%)
Sonar KotlinSonarQube plugin for Kotlin
Stars: ✭ 412 (-83.96%)
SqlvetGo fearless SQL. Sqlvet performs static analysis on raw SQL queries in your Go code base.
Stars: ✭ 410 (-84.04%)
GosecGolang security checker
Stars: ✭ 5,694 (+121.64%)
ClusterlintA best practices checker for Kubernetes clusters. 🤠
Stars: ✭ 409 (-84.08%)
Vulny Code Static AnalysisPython script to detect vulnerabilities inside PHP source code using static analysis, based on regex
Stars: ✭ 207 (-91.94%)
Phpstan Deprecation RulesPHPStan rules for detecting usage of deprecated classes, methods, properties, constants and traits.
Stars: ✭ 160 (-93.77%)
PytA Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications
Stars: ✭ 2,061 (-19.77%)
UndercoverActionable code coverage - detects untested code blocks in recent changes
Stars: ✭ 574 (-77.66%)
Nodejsscannodejsscan is a static security code scanner for Node.js applications.
Stars: ✭ 1,874 (-27.05%)
Rubysonaran advanced semantic indexer for Ruby
Stars: ✭ 175 (-93.19%)