Rubocop PackagingA RuboCop extension focused on enforcing upstream best practices and coding conventions.
Stars: ✭ 29 (-83.14%)
Standard🌟 JavaScript Style Guide, with linter & automatic code fixer
Stars: ✭ 26,433 (+15268.02%)
UnimportA linter, formatter for finding and removing unused import statements.
Stars: ✭ 96 (-44.19%)
Kube ScoreKubernetes object analysis with recommendations for improved reliability and security
Stars: ✭ 1,128 (+555.81%)
Sonar DotnetCode analyzer for C# and VB.NET projects https://redirect.sonarsource.com/plugins/vbnet.html
Stars: ✭ 466 (+170.93%)
AbaplintStandalone linter for ABAP
Stars: ✭ 111 (-35.47%)
TipStatic program analysis for TIP
Stars: ✭ 140 (-18.6%)
Phpdoc ParserNext-gen phpDoc parser with support for intersection types and generics
Stars: ✭ 569 (+230.81%)
CodechartaCodeCharta visualizes multiple code metrics using 3D tree maps.
Stars: ✭ 85 (-50.58%)
Static Analysis⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.
Stars: ✭ 9,310 (+5312.79%)
Preallocprealloc is a Go static analysis tool to find slice declarations that could potentially be preallocated.
Stars: ✭ 419 (+143.6%)
GrepbugsA regex based source code scanner.
Stars: ✭ 118 (-31.4%)
TscancodeA static code analyzer for C++, C#, Lua
Stars: ✭ 1,112 (+546.51%)
Bento[DEPRECATED] Find Python web-app bugs delightfully fast, without changing your workflow. 🍱
Stars: ✭ 147 (-14.53%)
Eslint PluginESLint configurations and additional rules for me
Stars: ✭ 19 (-88.95%)
DrekA static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a large application, with an emphasis on identifying development anti-patterns and footguns.
Stars: ✭ 103 (-40.12%)
StacoanStaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.
Stars: ✭ 707 (+311.05%)
Walkmod Corewalkmod: an open source tool to fix coding style issues
Stars: ✭ 153 (-11.05%)
JackhammerJackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
Stars: ✭ 633 (+268.02%)
RubberduckEvery programmer needs a rubberduck. COM add-in for the VBA & VB6 IDE (VBE).
Stars: ✭ 1,287 (+648.26%)
Pep8speaksA GitHub app to automatically review Python code style over Pull Requests
Stars: ✭ 546 (+217.44%)
I18n TasksManage translation and localization with static analysis, for Ruby i18n
Stars: ✭ 1,748 (+916.28%)
GosecGolang security checker
Stars: ✭ 5,694 (+3210.47%)
PfunFunctional, composable, asynchronous, type-safe Python.
Stars: ✭ 75 (-56.4%)
FeramFeram finds & fixes bugs in your commits
Stars: ✭ 122 (-29.07%)
HydiomaticThe Hy Transformer
Stars: ✭ 65 (-62.21%)
WpbulletA static code analysis for WordPress (and PHP)
Stars: ✭ 148 (-13.95%)
Flake8The official GitHub mirror of https://gitlab.com/pycqa/flake8
Stars: ✭ 1,112 (+546.51%)
NsdepcopNsDepCop is a static code analysis tool that helps to enforce namespace dependency rules in C# projects. No more unplanned or unnoticed dependencies in your system.
Stars: ✭ 114 (-33.72%)
DevreplayA linter that replay your developing style
Stars: ✭ 39 (-77.33%)
CflintStatic code analysis for CFML (a linter)
Stars: ✭ 156 (-9.3%)
Cfmtcfmt is a tool to wrap Go comments over a certain length to a new line.
Stars: ✭ 28 (-83.72%)
PhpstanPHP Static Analysis Tool - discover bugs in your code without running it!
Stars: ✭ 10,534 (+6024.42%)
Sonar Java☕️ SonarSource Static Analyzer for Java Code Quality and Security
Stars: ✭ 745 (+333.14%)
RubocopA Ruby static code analyzer and formatter, based on the community Ruby style guide.
Stars: ✭ 11,593 (+6640.12%)
CheckstyleCheckstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
Stars: ✭ 6,481 (+3668.02%)
Npgsql.fsharp.analyzerF# analyzer that provides embedded SQL syntax analysis, type-checking for parameters and result sets and nullable column detection when writing queries using Npgsql.FSharp.
Stars: ✭ 103 (-40.12%)
SonarjsSonarSource Static Analyzer for JavaScript and TypeScript
Stars: ✭ 696 (+304.65%)
Phpstan Deprecation RulesPHPStan rules for detecting usage of deprecated classes, methods, properties, constants and traits.
Stars: ✭ 160 (-6.98%)
Violations LibJava library for parsing report files from static code analysis.
Stars: ✭ 94 (-45.35%)
PhanPhan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
Stars: ✭ 5,194 (+2919.77%)
Sonar Pmd☕️ PMD Plugin for SonarQube
Stars: ✭ 139 (-19.19%)
Security Code ScanVulnerability Patterns Detector for C# and VB.NET
Stars: ✭ 550 (+219.77%)
SourcecodesnifferThe Source Code Sniffer is a poor man’s static code analysis tool (SCA) that leverages regular expressions. Designed to highlight high risk functions (Injection, LFI/RFI, file uploads etc) across multiple languages (ASP, Java, CSharp, PHP, Perl, Python, JavaScript, HTML etc) in a highly configurable manner.
Stars: ✭ 87 (-49.42%)
Phpcs Security Auditphpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code
Stars: ✭ 525 (+205.23%)
TajsType Analyzer for JavaScript
Stars: ✭ 150 (-12.79%)
Rubocop RailsA RuboCop extension focused on enforcing Rails best practices and coding conventions.
Stars: ✭ 433 (+151.74%)
SouffleSoufflé is a variant of Datalog for tool designers crafting analyses in Horn clauses. Soufflé synthesizes a native parallel C++ program from a logic specification.
Stars: ✭ 426 (+147.67%)
Owasp OrizonOwasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
Stars: ✭ 130 (-24.42%)
Pest🐞 Primitive Erlang Security Tool
Stars: ✭ 79 (-54.07%)
InferA static analyzer for Java, C, C++, and Objective-C
Stars: ✭ 12,823 (+7355.23%)
Perl CriticThe leading static analyzer for Perl. Configurable, extensible, powerful.
Stars: ✭ 149 (-13.37%)
Fb Contriba FindBugs/SpotBugs plugin for doing static code analysis for java code bases
Stars: ✭ 124 (-27.91%)
PhpinspectionseaA Static Code Analyzer for PHP (a PhpStorm/Idea Plugin)
Stars: ✭ 1,211 (+604.07%)