GitHub topics: static-code-analysis

phpstan/phpstan-strict-rules

Extra strict and opinionated rules for PHPStan

Language: PHP - Size: 388 KB - Last synced at: 5 days ago - Pushed at: 2 months ago - Stars: 649 - Forks: 51

Stratigraph produces a graph of the mutual usages of source code packages of a software system and derives a layering from this graph. As a result it may check, if the software adheres to a layering pattern.

Language: Java - Size: 116 KB - Last synced at: 17 days ago - Pushed at: 18 days ago - Stars: 2 - Forks: 0

vojtech-dobes/phpstan-php-graphql-server-nette-integration

Language: PHP - Size: 20.5 KB - Last synced at: 17 days ago - Pushed at: 18 days ago - Stars: 0 - Forks: 0

vojtech-dobes/phpstan-php-graphql-server

Language: PHP - Size: 25.4 KB - Last synced at: 17 days ago - Pushed at: 18 days ago - Stars: 0 - Forks: 0

igsemenov/docspyer

Explores the structure of Python code.

Language: Python - Size: 104 KB - Last synced at: 17 days ago - Pushed at: 18 days ago - Stars: 2 - Forks: 1

danini-the-panini/will_it_ruby

Run your Ruby code before actually running it

Language: Ruby - Size: 286 KB - Last synced at: 6 days ago - Pushed at: over 6 years ago - Stars: 2 - Forks: 0

felipebz/zpa

Parser and static code analysis tool for PL/SQL and Oracle SQL.

Language: Kotlin - Size: 6.59 MB - Last synced at: 19 days ago - Pushed at: 19 days ago - Stars: 225 - Forks: 78

cs-au-dk/TIP

Static program analysis for TIP

Language: Scala - Size: 3.33 MB - Last synced at: 11 days ago - Pushed at: about 2 months ago - Stars: 290 - Forks: 136

mysticatea/eslint-plugin-node

Additional ESLint's rules for Node.js

Language: JavaScript - Size: 965 KB - Last synced at: 3 days ago - Pushed at: about 1 year ago - Stars: 961 - Forks: 176

htrgouvea/zarn

A lightweight static security analysis tool for modern Perl Apps

Language: Perl - Size: 188 KB - Last synced at: 19 days ago - Pushed at: 20 days ago - Stars: 49 - Forks: 12

kalessil/phpinspectionsea

A Static Code Analyzer for PHP (a PhpStorm/Idea Plugin)

Language: Java - Size: 127 MB - Last synced at: 20 days ago - Pushed at: 21 days ago - Stars: 1,463 - Forks: 117

loong64/ruff

An extremely fast Python linter and code formatter, written in Rust.

Size: 18.6 KB - Last synced at: 21 days ago - Pushed at: 21 days ago - Stars: 0 - Forks: 0

roskakori/pygount

count lines of code for hundreds of languages using pygments

Language: Python - Size: 1.12 MB - Last synced at: 1 day ago - Pushed at: 25 days ago - Stars: 170 - Forks: 24

realvizu/NsDepCop

NsDepCop is a static code analysis tool that enforces namespace and assembly dependency rules in C# projects.

Language: C# - Size: 16.7 MB - Last synced at: 12 days ago - Pushed at: 3 months ago - Stars: 213 - Forks: 32

Shopify/theme-check 📦

The Ultimate Shopify Theme Linter

Language: Ruby - Size: 3.49 MB - Last synced at: 8 days ago - Pushed at: 11 months ago - Stars: 349 - Forks: 95

phpstan/phpstan-nette

Nette Framework class reflection extension for PHPStan & framework-specific rules

Language: PHP - Size: 282 KB - Last synced at: 5 days ago - Pushed at: 2 months ago - Stars: 103 - Forks: 38

Tencent/TscanCode

A static code analyzer for C++, C#, Lua

Language: C++ - Size: 37.5 MB - Last synced at: 23 days ago - Pushed at: over 1 year ago - Stars: 2,059 - Forks: 596

gauge-sh/tach

A Python tool to visualize + enforce dependencies, using modular architecture 🌎 Open source 🐍 Installable via pip 🔧 Able to be adopted incrementally - ⚡ Implemented with no runtime impact ♾️ Interoperable with your existing systems 🦀 Written in rust

Language: Rust - Size: 22.9 MB - Last synced at: 22 days ago - Pushed at: 26 days ago - Stars: 2,401 - Forks: 60

phpstan/phpstan-webmozart-assert

PHPStan extension for webmozart/assert

Language: PHP - Size: 237 KB - Last synced at: 5 days ago - Pushed at: 2 months ago - Stars: 172 - Forks: 27

mchalupa/dg

[LLVM Static Slicer] Various program analyses, construction of dependence graphs and program slicing of LLVM bitcode.

Language: C++ - Size: 5.74 MB - Last synced at: 12 days ago - Pushed at: about 1 month ago - Stars: 505 - Forks: 137

webarx-security/wpbullet

A static code analysis for WordPress (and PHP)

Language: Python - Size: 227 KB - Last synced at: 6 days ago - Pushed at: almost 3 years ago - Stars: 240 - Forks: 47

qiniu/reviewbot

Empower Your Code Quality with Self-Hosted Automated Analysis and Review

Language: Go - Size: 4.75 MB - Last synced at: about 7 hours ago - Pushed at: about 2 months ago - Stars: 77 - Forks: 21

guilatrova/tryceratops

A linter to prevent exception handling antipatterns in Python (limited only for those who like dinosaurs).

Language: Python - Size: 1.49 MB - Last synced at: 24 days ago - Pushed at: 8 months ago - Stars: 444 - Forks: 25

usagitoneko97/klara

Automatic test case generation for python and static analysis library

Language: Python - Size: 9.13 MB - Last synced at: 14 days ago - Pushed at: about 3 years ago - Stars: 262 - Forks: 13

eclipse-pmd/eclipse-pmd Fork of acanda/eclipse-pmd

PMD Plugin for the Eclipse IDE

Language: Java - Size: 17.1 MB - Last synced at: 28 days ago - Pushed at: 28 days ago - Stars: 10 - Forks: 1

vincentcox/StaCoAn

StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.

Language: JavaScript - Size: 38.8 MB - Last synced at: 28 days ago - Pushed at: about 4 years ago - Stars: 848 - Forks: 133

mccright/references

Collection of reusable references

Size: 2.23 MB - Last synced at: 29 days ago - Pushed at: 29 days ago - Stars: 12 - Forks: 4

mysticatea/eslint-plugin

ESLint configurations and additional rules for me

Language: JavaScript - Size: 305 KB - Last synced at: 20 days ago - Pushed at: over 2 years ago - Stars: 27 - Forks: 10

AndreSonntag/CogniCrypt_FIX

Language: Java - Size: 347 KB - Last synced at: 19 days ago - Pushed at: about 4 years ago - Stars: 1 - Forks: 0

Ragnarok540/astspy

Abstract Syntax Tree SPY

Language: Python - Size: 10.7 KB - Last synced at: about 13 hours ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0

saschawildgrube/servicenow-codesanity

Contains instance scan checks to validate source code.

Size: 1.92 MB - Last synced at: 10 days ago - Pushed at: 10 days ago - Stars: 11 - Forks: 157

ronami/HypeScript

🐬 A simplified implementation of TypeScript's type system written in TypeScript's type system

Language: TypeScript - Size: 2.15 MB - Last synced at: about 1 month ago - Pushed at: 4 months ago - Stars: 1,954 - Forks: 23

Technologicat/pyan

Static call graph generator. The official Python 3 version. Development repo.

Language: Python - Size: 1.16 MB - Last synced at: 30 days ago - Pushed at: 11 months ago - Stars: 373 - Forks: 65

baikaishuipp/jcci

Java code commit impact, java code change impact analysis，java代码改动影响范围分析工具，精准测试，回归测试范围划定

Language: Python - Size: 1.75 MB - Last synced at: about 1 month ago - Pushed at: 7 months ago - Stars: 308 - Forks: 53

standard/awesome-standard

Documenting the explosion of packages in the standard ecosystem!

Size: 34.2 KB - Last synced at: 9 days ago - Pushed at: almost 2 years ago - Stars: 398 - Forks: 33

glayzzle/php-parser

:herb: NodeJS PHP Parser - extract AST or tokens

Language: JavaScript - Size: 29.5 MB - Last synced at: about 1 month ago - Pushed at: 2 months ago - Stars: 544 - Forks: 72

ipyflow/ipyflow

A reactive Python kernel for Jupyter notebooks.

Language: Python - Size: 23 MB - Last synced at: about 1 month ago - Pushed at: 2 months ago - Stars: 1,221 - Forks: 22

exussum12/coverageChecker

Allows old code to use new standards

Language: PHP - Size: 281 KB - Last synced at: 6 days ago - Pushed at: 12 months ago - Stars: 176 - Forks: 18

python-security/pyt

A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications

Language: Python - Size: 3.2 MB - Last synced at: 23 days ago - Pushed at: over 4 years ago - Stars: 2,184 - Forks: 245

zegl/kube-score

Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in your Kubernetes YAML and Charts. Static code analysis for Kubernetes.

Language: Go - Size: 1 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 2,897 - Forks: 183

scheb/tombstone

Dead code detection with tombstones for PHP 🪦🧟

Language: PHP - Size: 1.25 MB - Last synced at: about 1 month ago - Pushed at: 5 months ago - Stars: 271 - Forks: 19

jfmengels/elm-review

Analyzes Elm projects, to help find mistakes before your users find them.

Language: Elm - Size: 6.61 MB - Last synced at: 29 days ago - Pushed at: 4 months ago - Stars: 269 - Forks: 13

Mkohm/detekt-hint

Detection of design principle violations in Kotlin as a plugin to detekt.

Language: HTML - Size: 8.96 MB - Last synced at: about 1 month ago - Pushed at: over 2 years ago - Stars: 80 - Forks: 3

priv-kweihmann/systemdlint

Systemd Linter

Language: Python - Size: 2.1 MB - Last synced at: about 1 month ago - Pushed at: 4 months ago - Stars: 37 - Forks: 7

policeman-tools/forbidden-apis

Policeman's Forbidden API Checker

Language: Java - Size: 1.42 MB - Last synced at: 30 days ago - Pushed at: 3 months ago - Stars: 349 - Forks: 36

alexkohler/prealloc

prealloc is a Go static analysis tool to find slice declarations that could potentially be preallocated.

Language: Go - Size: 59.6 KB - Last synced at: about 1 month ago - Pushed at: about 1 year ago - Stars: 655 - Forks: 24

ahauschulte/jspecify-with-nullaway

Demonstrates the combined use of JSpecify and NullAway

Language: Java - Size: 38.1 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 1 - Forks: 0

phpstan/phpstan-beberlei-assert

PHPStan extension for beberlei/assert

Language: PHP - Size: 154 KB - Last synced at: 3 days ago - Pushed at: about 2 months ago - Stars: 42 - Forks: 12

stefmolin/build-your-own-simple-static-code-analyzer-talk

Slides for my PyCon Lithuania 2025 keynote "Build Your Own (Simple) Static Code Analyzer"

Size: 1.13 MB - Last synced at: 2 days ago - Pushed at: about 2 months ago - Stars: 0 - Forks: 0

Anurag-Saha/codemetrix

🔍 CodeMetrix: A sophisticated code analysis and cost estimation tool that provides advanced metrics, quality assessment, and intelligent reporting for software projects. Features COCOMO II modeling, AST-based analysis, and multi-language support.

Language: Python - Size: 953 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 0 - Forks: 0

Ayushx309/codemetrix

🔍 CodeMetrix: A sophisticated code analysis and cost estimation tool that provides advanced metrics, quality assessment, and intelligent reporting for software projects. Features COCOMO II modeling, AST-based analysis, and multi-language support.

Language: Python - Size: 959 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 1 - Forks: 0

amit-davidson/Chronos

Chronos - A static race detector for the go language

Language: Go - Size: 13.4 MB - Last synced at: about 2 months ago - Pushed at: about 3 years ago - Stars: 435 - Forks: 11

hylang/hydiomatic

The Hy Transformer

Language: Hy - Size: 242 KB - Last synced at: 2 days ago - Pushed at: about 6 years ago - Stars: 83 - Forks: 4

codeclimate/codeclimate-eslint

Code Climate Engine for ESLint

Language: JavaScript - Size: 10.3 MB - Last synced at: about 1 month ago - Pushed at: about 2 months ago - Stars: 95 - Forks: 94

codeclimate/codeclimate-bundler-audit

Code Climate Engine for bundler-audit

Language: Ruby - Size: 147 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 11 - Forks: 8

codeclimate/codeclimate-rubocop

Code Climate Engine for Rubocop

Language: Ruby - Size: 2.56 MB - Last synced at: 20 days ago - Pushed at: about 2 months ago - Stars: 60 - Forks: 45

codeclimate/codeclimate-duplication

Code Climate engine for code duplication analysis

Language: Ruby - Size: 757 KB - Last synced at: 27 days ago - Pushed at: about 2 months ago - Stars: 114 - Forks: 25

codeclimate/codeclimate-phpcodesniffer

Code Climate Engine for PHP Code Sniffer

Language: PHP - Size: 107 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 28 - Forks: 22

codeclimate/codeclimate-pep8 Fork of PyCQA/pycodestyle

Simple Python style checker in one Python file

Language: Python - Size: 1.09 MB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 5 - Forks: 7

codeclimate/codeclimate-golint

Code Climate Engine for golint

Language: Go - Size: 4.18 MB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 7 - Forks: 7

denzyldick/phanalist

Performant static analyzer for PHP, which is extremely easy to use. It helps you catch common mistakes in your PHP code.

Language: Rust - Size: 167 MB - Last synced at: 5 days ago - Pushed at: 2 months ago - Stars: 138 - Forks: 5

eslintcc/eslintcc

Complexity of Code - JavaScript/TypeScript

Language: JavaScript - Size: 208 KB - Last synced at: about 1 month ago - Pushed at: 9 months ago - Stars: 37 - Forks: 0

mayconfsousa/eslint-config-nebula

Elevate JS, TS, and React with best practices for stellar code quality and consistency

Language: JavaScript - Size: 164 KB - Last synced at: 28 days ago - Pushed at: 2 months ago - Stars: 1 - Forks: 0

Perl-Critic/Perl-Critic

The leading static analyzer for Perl. Configurable, extensible, powerful.

Language: Perl - Size: 19.2 MB - Last synced at: about 2 months ago - Pushed at: 8 months ago - Stars: 186 - Forks: 104

seachicken/inga

Visualizing the Impact of Code Changes

Language: Common Lisp - Size: 951 KB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 15 - Forks: 3

chrisallenlane/drek

A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a large application, with an emphasis on identifying development anti-patterns and footguns.

Language: HTML - Size: 174 KB - Last synced at: 10 days ago - Pushed at: 12 months ago - Stars: 139 - Forks: 22

Exlint/cli

Exlint CLI 📦️ Centralize coding standards across repositories in seconds.

Language: TypeScript - Size: 13.2 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 32 - Forks: 1

phpstan/phpstan-dibi

Dibi class reflection extension for PHPStan

Language: PHP - Size: 95.7 KB - Last synced at: 6 days ago - Pushed at: 2 months ago - Stars: 16 - Forks: 9

IntegerMan/gitstractor

A library for visualizing the commits, authors, and files of any git repository

Language: Jupyter Notebook - Size: 8.97 MB - Last synced at: 1 day ago - Pushed at: 10 months ago - Stars: 24 - Forks: 2

linthtml/linthtml

The html5 linter and validator.

Language: TypeScript - Size: 10.8 MB - Last synced at: 6 days ago - Pushed at: 11 days ago - Stars: 92 - Forks: 14

codeface-io/Codeface

Mac App for Architecture Analytics

Language: Swift - Size: 154 MB - Last synced at: 17 days ago - Pushed at: over 1 year ago - Stars: 46 - Forks: 4

tomasbjerre/violations-command-line

Command line tool that will find report files from static code analysis, present and optionally fail the command.

Language: Java - Size: 687 KB - Last synced at: 9 days ago - Pushed at: 9 months ago - Stars: 15 - Forks: 1

checkstyle-addons/checkstyle-addons

Additional Checkstyle checks

Language: Java - Size: 3.67 MB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 16 - Forks: 2

KidkArolis/healthier 📦

🧘‍♀️ Healthier is an opinionated style agnostic code linter – a friendly companion to Prettier

Language: JavaScript - Size: 1.34 MB - Last synced at: 8 days ago - Pushed at: 2 months ago - Stars: 84 - Forks: 5

alexkohler/nakedret

nakedret is a Go static analysis tool to find naked returns in functions greater than a specified function length.

Language: Go - Size: 1.22 MB - Last synced at: about 1 month ago - Pushed at: about 2 months ago - Stars: 129 - Forks: 16

robinwalterfit/biome-standard

A port of the StandardJS ESLint config to Biome.

Size: 127 KB - Last synced at: about 2 months ago - Pushed at: 9 months ago - Stars: 8 - Forks: 2

securesauce/precli-action

GitHub Action to run Precaution SAST

Size: 5.86 KB - Last synced at: 2 months ago - Pushed at: 8 months ago - Stars: 2 - Forks: 1

jenkinsci/violation-comments-to-gitlab-plugin

Comments GitLab merge requests with static code analyzer findings.

Language: Java - Size: 704 KB - Last synced at: 3 months ago - Pushed at: 11 months ago - Stars: 21 - Forks: 4

yamadashy/phpstan-friendly-formatter

🤝 A friendly error formatter extension for PHPStan that provides more readable and informative output, including code snippets and color highlighting.

Language: PHP - Size: 1.75 MB - Last synced at: 7 days ago - Pushed at: about 2 months ago - Stars: 54 - Forks: 2

sharpenrocks/Sharpen

Visual Studio extension that intelligently introduces new C# features into your existing codebase

Language: C# - Size: 4.96 MB - Last synced at: about 1 month ago - Pushed at: over 2 years ago - Stars: 415 - Forks: 31

alisqi/TwigQI

TwigQI: Static code analysis for Twig templates

Language: PHP - Size: 377 KB - Last synced at: 7 days ago - Pushed at: 3 months ago - Stars: 27 - Forks: 2

sonar-perl/sonar-perl

Community Perl Plugin for SonarQube

Language: HTML - Size: 8.64 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 74 - Forks: 22

codacy/codacy-psscriptanalyzer Fork of adityapatwardhan/ps-codacy

Dockerfile for PowerShell Script Analyzer for codacy

Language: PowerShell - Size: 137 KB - Last synced at: 8 days ago - Pushed at: 3 months ago - Stars: 0 - Forks: 3

codebytemirza/LLMgrep

LLMGrep combines the precision of Semgrep's static analysis with the power of Large Language Models to deliver comprehensive security scanning, interactive vulnerability discussions, and intelligent rule generation capabilities.

Language: Python - Size: 20.5 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

evincarofautumn/Ward

A static analysis tool for C.

Language: Haskell - Size: 228 KB - Last synced at: 2 days ago - Pushed at: over 5 years ago - Stars: 27 - Forks: 2

JorisChau/checkglobals

Find (missing) dependencies in R-source code

Language: R - Size: 1.7 MB - Last synced at: 28 days ago - Pushed at: 4 months ago - Stars: 10 - Forks: 0

security-code-scan/security-code-scan

Vulnerability Patterns Detector for C# and VB.NET

Language: C# - Size: 6.17 MB - Last synced at: 3 months ago - Pushed at: 12 months ago - Stars: 950 - Forks: 164

konrad1977/loco

A linter for Swift Localizations

Language: Swift - Size: 3.06 MB - Last synced at: 2 days ago - Pushed at: over 1 year ago - Stars: 72 - Forks: 2

iarsystems/iar-vsc-build

Visual Studio Code extension for developing and building IAR projects

Language: TypeScript - Size: 7.62 MB - Last synced at: 16 days ago - Pushed at: 7 months ago - Stars: 40 - Forks: 5

tylerwince/flake8-bandit

Automated security testing using bandit and flake8.

Language: Python - Size: 86.9 KB - Last synced at: about 14 hours ago - Pushed at: almost 2 years ago - Stars: 112 - Forks: 24

paulveillard/cybersecurity-sast

An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about Static Application Security Testing (SAST) Tools.

Size: 323 KB - Last synced at: 3 months ago - Pushed at: 12 months ago - Stars: 20 - Forks: 4

olacabs/jackhammer

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

Language: Java - Size: 63.7 MB - Last synced at: 3 months ago - Pushed at: over 1 year ago - Stars: 728 - Forks: 164

sshaaf/kantra-examples

A repo to demonstrate differnt types of rules with Kantra cli a Konveyor.io project for static code analysis

Language: Java - Size: 80.1 KB - Last synced at: 5 days ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

DariuszPorowski/github-action-gitleaks

This GitHub Action allows you to run Gitleaks in your GitHub workflow.

Language: Shell - Size: 101 KB - Last synced at: 3 days ago - Pushed at: 3 months ago - Stars: 21 - Forks: 10

imsalmanmalik/DevSecOps-Project-Netflix-Deployment

Deploy a Netflix clone application using a secure CI/CD pipeline built with Jenkins, Docker 🐳 , and Kubernetes ☸️. This project includes implementing code quality and security tools (SonarQube, Trivy), as well as monitoring solutions (Prometheus, Grafana) to ensure reliability and visibility

Language: TypeScript - Size: 7.55 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 2 - Forks: 1