phpstan/phpstan

PHP Static Analysis Tool - discover bugs in your code without running it!

Language: PHP - Size: 6.14 GB - Last synced at: about 2 hours ago - Pushed at: about 2 hours ago - Stars: 13,441 - Forks: 923

goblint/analyzer

Static analysis framework for C

Language: OCaml - Size: 38.4 MB - Last synced at: 10 minutes ago - Pushed at: about 1 hour ago - Stars: 197 - Forks: 80

phan/phan

Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.

Language: PHP - Size: 42.7 MB - Last synced at: about 14 hours ago - Pushed at: about 15 hours ago - Stars: 5,567 - Forks: 367

dessertlab/DeVAIC

DeVAIC (Detection of Vulnerabilities in AI-generated Code) is a static code analyzer for security issues in Python code snippets. It detects vulnerabilities belonging to the OWASP categories listed in the Top 10 of 2021.

Language: Shell - Size: 707 KB - Last synced at: about 19 hours ago - Pushed at: about 20 hours ago - Stars: 13 - Forks: 1

stormsidali2001/ioc-arise

Arise type-safe IoC containers from your code. Zero overhead, zero coupling.

Language: TypeScript - Size: 1.1 MB - Last synced at: about 20 hours ago - Pushed at: about 20 hours ago - Stars: 0 - Forks: 0

sartcod/ruff

An extremely fast Python linter and code formatter, written in Rust.

Size: 19.5 KB - Last synced at: about 21 hours ago - Pushed at: about 23 hours ago - Stars: 0 - Forks: 0

SonarSource/sonar-java

:coffee: SonarSource Static Analyzer for Java Code Quality and Security

Language: Java - Size: 67 MB - Last synced at: about 20 hours ago - Pushed at: about 20 hours ago - Stars: 1,167 - Forks: 694

facebook/infer

A static analyzer for Java, C, C++, and Objective-C

Language: OCaml - Size: 191 MB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 15,250 - Forks: 2,035

biomejs/biome

A toolchain for web projects, aimed to provide functionalities to maintain them. Biome offers formatter and linter, usable via CLI and LSP.

Language: Rust - Size: 209 MB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 19,476 - Forks: 611

eslint/markdown

Lint JavaScript code blocks in Markdown documents

Language: JavaScript - Size: 534 KB - Last synced at: about 22 hours ago - Pushed at: 1 day ago - Stars: 468 - Forks: 73

SonarSource/SonarJS

SonarSource Static Analyzer for JavaScript and TypeScript

Language: TypeScript - Size: 80.7 MB - Last synced at: about 24 hours ago - Pushed at: 1 day ago - Stars: 1,115 - Forks: 185

Ali5tan/bandit

Solutions and walkthroughs for OverTheWire: Bandit - learn Linux command-line basics through real hacking challenges.

Language: Shell - Size: 6.84 KB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 0 - Forks: 0

wala/WALA

T.J. Watson Libraries for Analysis, with frontends for Java, Android, and JavaScript, and may common static program analyses

Language: Java - Size: 57.5 MB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 803 - Forks: 237

datreeio/datree 📦

Prevent Kubernetes misconfigurations from reaching production (again 😤 )! From code to cloud, Datree provides an E2E policy enforcement solution to run automatic checks for rule violations. See our docs: https://hub.datree.io

Language: Go - Size: 8.9 MB - Last synced at: about 12 hours ago - Pushed at: about 1 year ago - Stars: 6,363 - Forks: 360

reviewdog/reviewdog

🐶 Automated code review tool integrated with any code analysis tools regardless of programming language

Language: Go - Size: 5.07 MB - Last synced at: 1 day ago - Pushed at: 3 days ago - Stars: 8,478 - Forks: 448

PyCQA/bandit

Bandit is a tool designed to find common security issues in Python code.

Language: Python - Size: 5.62 MB - Last synced at: 1 day ago - Pushed at: 3 days ago - Stars: 7,076 - Forks: 655

Correia-jpv/fucking-static-analysis

⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more. With repository stars⭐ and forks🍴

Language: Rust - Size: 40.8 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 22 - Forks: 1

pylint-dev/pylint

It's not just a linter that annoys you!

Language: Python - Size: 40.4 MB - Last synced at: 2 days ago - Pushed at: 3 days ago - Stars: 5,490 - Forks: 1,177

uber/NullAway

A tool to help eliminate NullPointerExceptions (NPEs) in your Java code with low build-time overhead

Language: Java - Size: 6.72 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 3,778 - Forks: 307

eslint/eslint

Find and fix problems in your JavaScript code.

Language: JavaScript - Size: 47.1 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 26,024 - Forks: 4,737

mebigfatguy/fb-contrib

a FindBugs/SpotBugs plugin for doing static code analysis for java code bases

Language: Java - Size: 12 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 159 - Forks: 44

souffle-lang/souffle

Soufflé is a variant of Datalog for tool designers crafting analyses in Horn clauses. Soufflé synthesizes a native parallel C++ program from a logic specification.

Language: C++ - Size: 516 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 990 - Forks: 218

PyCQA/flake8

flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.

Language: Python - Size: 3.56 MB - Last synced at: 2 days ago - Pushed at: 18 days ago - Stars: 3,636 - Forks: 328

codeintegrity-ai/mutahunter

Open Source, Language Agnostic Mutation Testing

Language: Python - Size: 1.63 MB - Last synced at: about 14 hours ago - Pushed at: 2 months ago - Stars: 274 - Forks: 21

rubocop/vscode-rubocop

The official VS Code extension for the RuboCop linter and code formatter.

Language: TypeScript - Size: 1.76 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 62 - Forks: 3

SonarSource/sonar-dotnet

Code analyzer for C# and VB.NET projects

Language: C# - Size: 139 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 849 - Forks: 230

mthuurne/retroasm

RetroAsm: Assembly Toolkit

Language: Python - Size: 2.81 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 4 - Forks: 0

rubocop/rubocop

A Ruby static code analyzer and formatter, based on the community Ruby style guide.

Language: Ruby - Size: 47.6 MB - Last synced at: 3 days ago - Pushed at: 4 days ago - Stars: 12,745 - Forks: 3,079

tcosolutions/betterscan

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

Language: Python - Size: 12.8 MB - Last synced at: 1 day ago - Pushed at: 7 days ago - Stars: 871 - Forks: 98

semgrep/semgrep

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

Language: OCaml - Size: 85.6 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 11,846 - Forks: 707

vegardit/depcheck-maven-plugin

Maven plugin to check for used unused direct and used indirect (transitive) dependencies.

Language: Java - Size: 2.01 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 4 - Forks: 0

pytorch-labs/torchfix

TorchFix - a linter for PyTorch-using code with autofix support

Language: Python - Size: 223 KB - Last synced at: 3 days ago - Pushed at: 4 months ago - Stars: 143 - Forks: 20

mgechev/revive

🔥 ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint

Language: Go - Size: 6.32 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 5,200 - Forks: 297

openrewrite/rewrite-static-analysis

OpenRewrite recipes for identifying and fixing static analysis issues.

Language: Java - Size: 3.8 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 40 - Forks: 76

securego/gosec

Go security checker

Language: Go - Size: 5.16 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 8,301 - Forks: 648

phpstan/phpstan-mockery

PHPStan extension for Mockery

Language: PHP - Size: 145 KB - Last synced at: about 5 hours ago - Pushed at: 2 months ago - Stars: 93 - Forks: 19

JetBrains/qodana-action

⚙️ Scan your Go, Java, Kotlin, PHP, Python, JavaScript, TypeScript, .NET projects at GitHub with Qodana. This repository contains Qodana for Azure, GitHub, CircleCI and Gradle

Language: JavaScript - Size: 21.6 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 280 - Forks: 41

rubocop/rubocop-performance

An extension of RuboCop focused on code performance checks.

Language: Ruby - Size: 24.7 MB - Last synced at: 2 days ago - Pushed at: 4 days ago - Stars: 711 - Forks: 84

abaplint/abaplint

Standalone static analysis for ABAP

Language: TypeScript - Size: 71.8 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 236 - Forks: 76

phpstan/phpstan-symfony

Symfony extension for PHPStan

Language: PHP - Size: 694 KB - Last synced at: about 15 hours ago - Pushed at: 22 days ago - Stars: 745 - Forks: 94

MaibornWolff/codecharta

CodeCharta is a visualization tool that transforms complex software architecture and code metrics into interactive, customizable visual maps, empowering everyone to communicate and analyze your codebase. Improve code quality, maintainability, and architectural decisions

Language: TypeScript - Size: 108 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 304 - Forks: 39

JetBrains/qodana-cli

🔧 JetBrains Qodana’s official command line tool

Language: Go - Size: 2.94 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 198 - Forks: 29

astral-sh/ruff

An extremely fast Python linter and code formatter, written in Rust.

Language: Rust - Size: 76.4 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 40,021 - Forks: 1,395

spotbugs/spotbugs

SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.

Language: Java - Size: 140 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 3,670 - Forks: 625

phpstan/phpdoc-parser

Next-gen phpDoc parser with support for intersection types and generics

Language: PHP - Size: 950 KB - Last synced at: 4 days ago - Pushed at: 2 months ago - Stars: 1,444 - Forks: 64

checkstyle/checkstyle

Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.

Language: Java - Size: 192 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 8,605 - Forks: 3,837

rubocop/rubocop-rails

A RuboCop extension focused on enforcing Rails best practices and coding conventions.

Language: Ruby - Size: 28.2 MB - Last synced at: 3 days ago - Pushed at: 6 days ago - Stars: 841 - Forks: 274

utkarsh2102/rubocop-packaging

A RuboCop extension focused on enforcing upstream best practices and coding conventions.

Language: Ruby - Size: 164 KB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 36 - Forks: 11

RalfKoban/MiKo-Analyzers

Provides analyzers that are based on the .NET Compiler Platform.

Language: C# - Size: 14.3 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 13 - Forks: 1

tyhal/crie

Straight forward meta-linter trying to cover all languages

Language: Go - Size: 951 KB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 8 - Forks: 2

pmd/pmd

An extensible multilanguage static code analyzer.

Language: Java - Size: 500 MB - Last synced at: 7 days ago - Pushed at: 11 days ago - Stars: 5,112 - Forks: 1,524

Bearer/bearer

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

Language: Go - Size: 23.9 MB - Last synced at: 6 days ago - Pushed at: about 1 month ago - Stars: 2,310 - Forks: 123

vuejs/vue-eslint-parser

The ESLint custom parser for `.vue` files.

Language: TypeScript - Size: 2.19 MB - Last synced at: 2 days ago - Pushed at: 3 months ago - Stars: 475 - Forks: 77

soot-oss/SootUp

A new version of Soot with a completely overhauled architecture

Language: Java - Size: 299 MB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 695 - Forks: 92

vojtech-dobes/phpstan-dibi-steroids

Size: 32.2 KB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 0 - Forks: 0

jenkinsci/analysis-model

A library to read static analysis reports into a Java object model

Language: Java - Size: 13.5 MB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 85 - Forks: 187

phpstan/phpstan-deprecation-rules

PHPStan rules for detecting usage of deprecated classes, methods, properties, constants and traits.

Language: PHP - Size: 248 KB - Last synced at: about 4 hours ago - Pushed at: about 1 month ago - Stars: 413 - Forks: 20

pylint-dev/astroid

A common base representation of python source code for pylint and other projects

Language: Python - Size: 16.7 MB - Last synced at: about 8 hours ago - Pushed at: 4 days ago - Stars: 547 - Forks: 296

priv-kweihmann/meta-sca

Layer for static code analysis and security hardening

Language: BitBake - Size: 829 MB - Last synced at: 8 days ago - Pushed at: 8 days ago - Stars: 99 - Forks: 38

opalj/opal

Language: Scala - Size: 719 MB - Last synced at: 8 days ago - Pushed at: 8 days ago - Stars: 60 - Forks: 29

ckaznocha/intrange

intrange is a program for checking for loops that could use the Go 1.22 integer range feature.

Language: Go - Size: 221 KB - Last synced at: 8 days ago - Pushed at: 8 days ago - Stars: 30 - Forks: 2

phpstan/phpstan-doctrine

Doctrine extensions for PHPStan

Language: PHP - Size: 1.18 MB - Last synced at: 5 days ago - Pushed at: about 1 month ago - Stars: 635 - Forks: 105

coderaiser/putout

🐊 Pluggable and configurable JavaScript Linter, code transformer and formatter, drop-in ESLint superpower replacement 💪 with built-in support for js, jsx, typescript, markdown, yaml and json. Write declarative codemods in a simplest possible way 😏

Language: JavaScript - Size: 19.9 MB - Last synced at: 8 days ago - Pushed at: 9 days ago - Stars: 754 - Forks: 41

tomasbjerre/violations-lib

Java library for parsing report files from static code analysis.

Language: Java - Size: 2.13 MB - Last synced at: 9 days ago - Pushed at: 9 days ago - Stars: 149 - Forks: 41

abelflopes/eslint-config-tsr-pro

Professional grade eslint configuration targeted for typescript & react projects

Language: TypeScript - Size: 242 KB - Last synced at: 1 day ago - Pushed at: 9 days ago - Stars: 0 - Forks: 0

standard/standard

🌟 JavaScript Style Guide, with linter & automatic code fixer

Language: JavaScript - Size: 3.49 MB - Last synced at: 9 days ago - Pushed at: 9 months ago - Stars: 29,317 - Forks: 2,318

analysis-tools-dev/static-analysis

⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.

Language: Rust - Size: 41.1 MB - Last synced at: 8 days ago - Pushed at: about 1 month ago - Stars: 13,854 - Forks: 1,390

suned/pfun

Functional, composable, asynchronous, type-safe Python.

Language: Python - Size: 1.58 MB - Last synced at: 7 days ago - Pushed at: over 1 year ago - Stars: 151 - Forks: 14

glebm/i18n-tasks

Manage translation and localization with static analysis, for Ruby i18n

Language: Ruby - Size: 2.86 MB - Last synced at: 7 days ago - Pushed at: about 1 month ago - Stars: 2,115 - Forks: 271

bolajiwahab/pgrubic

PostgreSQL linter and formatter for schema migrations and design best practices.

Language: Python - Size: 4.56 MB - Last synced at: 11 days ago - Pushed at: 11 days ago - Stars: 6 - Forks: 1

JohT/code-graph-analysis-examples

Shows how to use the code-graph-analysis-pipeline based on examples

Size: 881 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 0 - Forks: 0

Feuermagier/autograder

Automatic grading of student's Java code

Language: Java - Size: 3.6 MB - Last synced at: 11 days ago - Pushed at: 11 days ago - Stars: 15 - Forks: 9

S-Eggers/APEX-DAG

Automating the extraction of data pipelines from computational notebooks or scripts.

Language: Jupyter Notebook - Size: 8.67 MB - Last synced at: 11 days ago - Pushed at: 11 days ago - Stars: 2 - Forks: 0

ccoVeille/golangci-lint-config-examples

These are .golangci.yml to go based on your need

Size: 44.9 KB - Last synced at: 8 days ago - Pushed at: 11 days ago - Stars: 27 - Forks: 1

JohT/code-graph-analysis-pipeline

Fully automated pipeline for static code graph analysis

Language: Jupyter Notebook - Size: 1.96 GB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 20 - Forks: 0

felipebz/zpa-cli

Command-line interface for the Z PL/SQL Analyzer.

Language: Kotlin - Size: 540 KB - Last synced at: 11 days ago - Pushed at: 11 days ago - Stars: 26 - Forks: 10

muttistefano/ros2_sonarcloud

ROS2 code quality tool based on sonarcloud

Language: Python - Size: 2.46 MB - Last synced at: 11 days ago - Pushed at: 11 days ago - Stars: 4 - Forks: 0

slackhq/compose-lints

Lint checks to aid with a healthy adoption of Compose

Language: Kotlin - Size: 4.25 MB - Last synced at: 4 days ago - Pushed at: 22 days ago - Stars: 436 - Forks: 28

standard/eslint-config-standard

ESLint Config for JavaScript Standard Style

Language: TypeScript - Size: 707 KB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 2,642 - Forks: 558

TWiStErRob/android-lint-examples

Project that reproduces every lint violation out there. (At least that's the idea, contributions welcome.)

Language: Java - Size: 883 KB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 7 - Forks: 1

mgechev/codelyzer

Static analysis for Angular projects.

Language: TypeScript - Size: 17.7 MB - Last synced at: about 14 hours ago - Pushed at: 28 days ago - Stars: 2,458 - Forks: 237

DmitryTsepelev/rubocop-graphql

Rubocop extension for enforcing graphql-ruby best practices

Language: Ruby - Size: 357 KB - Last synced at: 13 days ago - Pushed at: 13 days ago - Stars: 230 - Forks: 50

droidefense/engine

Droidefense: Advance Android Malware Analysis Framework

Language: Java - Size: 198 MB - Last synced at: 7 days ago - Pushed at: over 2 years ago - Stars: 481 - Forks: 105

jborgers/sonar-pmd

☕️ PMD Plugin for SonarQube

Language: Java - Size: 4.39 MB - Last synced at: 14 days ago - Pushed at: 14 days ago - Stars: 276 - Forks: 161

tiagoporto/limitlines

Lint and report number of lines by file.

Language: JavaScript - Size: 862 KB - Last synced at: 7 days ago - Pushed at: 14 days ago - Stars: 4 - Forks: 0

SonarSource/sonar-php

:elephant: SonarPHP: PHP static analyzer for SonarQube & SonarLint

Language: Java - Size: 22.2 MB - Last synced at: 14 days ago - Pushed at: 14 days ago - Stars: 408 - Forks: 106

designsecurity/progpilot

A static analysis tool for security

Language: PHP - Size: 26.2 MB - Last synced at: 14 days ago - Pushed at: 14 days ago - Stars: 339 - Forks: 61

JetBrains/Qodana

📝 Source repository of Qodana Help

Size: 187 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 393 - Forks: 78

phpstan/phpstan-phpunit

PHPUnit extensions and rules for PHPStan

Language: PHP - Size: 327 KB - Last synced at: 5 days ago - Pushed at: 14 days ago - Stars: 495 - Forks: 49

jenkinsci/warnings-ng-plugin

Jenkins Warnings Plugin - Next Generation

Language: Java - Size: 27 MB - Last synced at: 14 days ago - Pushed at: 14 days ago - Stars: 345 - Forks: 284

securesauce/precli

Precaution CLI - command line static application security testing tool

Language: Python - Size: 2.53 MB - Last synced at: 14 days ago - Pushed at: 14 days ago - Stars: 24 - Forks: 3

ballerina-platform/static-code-analysis-tool

Tool for performing static code analysis for Ballerina projects.

Language: Java - Size: 5.8 MB - Last synced at: 1 day ago - Pushed at: 15 days ago - Stars: 4 - Forks: 8

pep8speaks-org/pep8speaks

A GitHub :octocat: app to automatically review Python code style over Pull Requests

Language: Python - Size: 4.74 MB - Last synced at: 4 days ago - Pushed at: about 1 month ago - Stars: 616 - Forks: 87

GodoyLe/analysis

Language: Lean - Size: 221 KB - Last synced at: 16 days ago - Pushed at: 16 days ago - Stars: 0 - Forks: 0

google/pytype

A static type analyzer for Python code

Language: Python - Size: 42.4 MB - Last synced at: 15 days ago - Pushed at: 15 days ago - Stars: 4,897 - Forks: 287

rubberduck-vba/Rubberduck

Every programmer needs a rubberduck. COM add-in for the VBA & VB6 IDE (VBE).

Language: C# - Size: 101 MB - Last synced at: 15 days ago - Pushed at: 3 months ago - Stars: 2,017 - Forks: 309

praetorian-inc/gokart 📦

A static analysis tool for securing Go code

Language: Go - Size: 189 KB - Last synced at: 8 days ago - Pushed at: over 1 year ago - Stars: 2,178 - Forks: 106

jborgers/PMD-jPinpoint-rules

PMD rule set for responsible Java and Kotlin coding: performance, sustainability, multi-threading, data mixup and more.

Language: Java - Size: 3.05 MB - Last synced at: 4 days ago - Pushed at: 7 days ago - Stars: 47 - Forks: 10

phpstan/phpstan-strict-rules

Extra strict and opinionated rules for PHPStan

Language: PHP - Size: 388 KB - Last synced at: 5 days ago - Pushed at: 2 months ago - Stars: 649 - Forks: 51

provocon/stratigraph

Stratigraph produces a graph of the mutual usages of source code packages of a software system and derives a layering from this graph. As a result it may check, if the software adheres to a layering pattern.

Language: Java - Size: 116 KB - Last synced at: 16 days ago - Pushed at: 17 days ago - Stars: 2 - Forks: 0