static-analyzer | Topic | Ecosyste.ms: Repos

Topic: "static-analyzer"

phpstan/phpstan

PHP Static Analysis Tool - discover bugs in your code without running it!

Language: PHP - Size: 5.93 GB - Last synced at: 3 days ago - Pushed at: 4 days ago - Stars: 13,324 - Forks: 916

llvm-mirror/clang 📦

Mirror kept for legacy. Moved to https://github.com/llvm/llvm-project

Language: C++ - Size: 213 MB - Last synced at: about 6 hours ago - Pushed at: about 5 years ago - Stars: 3,043 - Forks: 1,655

e-m-b-a/emba

EMBA - The firmware security analyzer

Language: Shell - Size: 21.6 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 2,942 - Forks: 256

phpmetrics/PhpMetrics

Beautiful and understandable static analysis tool for PHP

Language: PHP - Size: 28.8 MB - Last synced at: about 13 hours ago - Pushed at: 2 months ago - Stars: 2,523 - Forks: 264

Ericsson/codechecker

CodeChecker is an analyzer tooling, defect database and viewer extension for static and dynamic analyzer tools.

Language: Python - Size: 41.4 MB - Last synced at: 3 days ago - Pushed at: 4 days ago - Stars: 2,380 - Forks: 406

PHPMD is a spin-off project of PHP Depend and aims to be a PHP equivalent of the well known Java tool PMD. PHPMD can be seen as an user friendly frontend application for the raw metrics stream measured by PHP Depend.

Language: PHP - Size: 7.75 MB - Last synced at: 4 days ago - Pushed at: 19 days ago - Stars: 2,360 - Forks: 346

KeenSecurityLab/BinAbsInspector

BinAbsInspector: Vulnerability Scanner for Binaries

Language: Java - Size: 779 KB - Last synced at: 19 days ago - Pushed at: 10 months ago - Stars: 1,610 - Forks: 233

SVF-tools/SVF

Static Value-Flow Analysis Framework for Source Code

Language: C++ - Size: 18.6 MB - Last synced at: about 12 hours ago - Pushed at: 19 days ago - Stars: 1,517 - Forks: 446

kalessil/phpinspectionsea

A Static Code Analyzer for PHP (a PhpStorm/Idea Plugin)

Language: Java - Size: 127 MB - Last synced at: 20 days ago - Pushed at: 7 months ago - Stars: 1,458 - Forks: 118

phpstan/phpdoc-parser

Next-gen phpDoc parser with support for intersection types and generics

Language: PHP - Size: 950 KB - Last synced at: 4 days ago - Pushed at: 11 days ago - Stars: 1,425 - Forks: 64

sleekbyte/tailor

Cross-platform static analyzer and linter for Swift.

Language: Java - Size: 2.66 MB - Last synced at: 6 months ago - Pushed at: about 4 years ago - Stars: 1,402 - Forks: 47

fkie-cad/cwe_checker

cwe_checker finds vulnerable patterns in binary executables

Language: Rust - Size: 9.31 MB - Last synced at: 13 days ago - Pushed at: 16 days ago - Stars: 1,206 - Forks: 128

SonarSource/sonar-java

:coffee: SonarSource Static Analyzer for Java Code Quality and Security

Language: Java - Size: 67.4 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 1,165 - Forks: 691

SonarSource/SonarJS

SonarSource Static Analyzer for JavaScript and TypeScript

Language: TypeScript - Size: 77.8 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 1,102 - Forks: 186

SonarSource/sonar-dotnet

Code analyzer for C# and VB.NET projects

Language: C# - Size: 139 MB - Last synced at: 3 days ago - Pushed at: 8 days ago - Stars: 827 - Forks: 232

Cyber-Buddy/APKHunt

APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.

Language: Go - Size: 19.3 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 771 - Forks: 74

alexkohler/prealloc

prealloc is a Go static analysis tool to find slice declarations that could potentially be preallocated.

Language: Go - Size: 59.6 KB - Last synced at: 5 months ago - Pushed at: about 1 year ago - Stars: 638 - Forks: 24

phpstan/phpstan-doctrine

Doctrine extensions for PHPStan

Language: PHP - Size: 1.17 MB - Last synced at: 7 days ago - Pushed at: 11 days ago - Stars: 621 - Forks: 102

kowainik/stan

🕵️ Haskell STatic ANalyser

Language: Haskell - Size: 559 KB - Last synced at: 4 days ago - Pushed at: 3 months ago - Stars: 580 - Forks: 52

insidersec/insider

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

Language: Go - Size: 4.39 MB - Last synced at: 3 days ago - Pushed at: about 3 years ago - Stars: 532 - Forks: 81

Chain-Fox/Chain-Fox

Chain-Fox: An all-in-one platform with automatic security detection ability for blockchains and smart contracts

Language: Rust - Size: 790 KB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 522 - Forks: 31

mchalupa/dg

[LLVM Static Slicer] Various program analyses, construction of dependence graphs and program slicing of LLVM bitcode.

Language: C++ - Size: 5.72 MB - Last synced at: 22 days ago - Pushed at: over 1 year ago - Stars: 499 - Forks: 136

vbpf/prevail

eBPF verifier based on abstract interpretation

Language: C++ - Size: 5.66 MB - Last synced at: 3 days ago - Pushed at: 11 days ago - Stars: 412 - Forks: 46

ajinabraham/njsscan

njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.

Language: JavaScript - Size: 387 KB - Last synced at: 13 days ago - Pushed at: 5 months ago - Stars: 397 - Forks: 79

rizsotto/scan-build

Clang's scan-build re-implementation in python

Language: Python - Size: 1020 KB - Last synced at: 17 days ago - Pushed at: over 2 years ago - Stars: 373 - Forks: 35

cs-au-dk/TIP

Static program analysis for TIP

Language: Scala - Size: 3.03 MB - Last synced at: about 2 months ago - Pushed at: over 2 years ago - Stars: 285 - Forks: 127

jborgers/sonar-pmd

☕️ PMD Plugin for SonarQube

Language: Java - Size: 4.39 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 275 - Forks: 160

ECSIM/opem

OPEM (Open Source PEM Fuel Cell Simulation Tool)

Language: Python - Size: 17.8 MB - Last synced at: 4 days ago - Pushed at: 12 days ago - Stars: 216 - Forks: 58

cs-au-dk/TAJS 📦

Type Analyzer for JavaScript

Language: Java - Size: 76.2 MB - Last synced at: about 2 months ago - Pushed at: 2 months ago - Stars: 194 - Forks: 40

florianschanda/miss_hit

MATLAB Independent, Small & Safe, High Integrity Tools - code formatter and more

Language: Python - Size: 4.06 MB - Last synced at: 6 months ago - Pushed at: 8 months ago - Stars: 165 - Forks: 20

SoftSec-KAIST/Smartian

Smartian: Enhancing Smart Contract Fuzzing with Static and Dynamic Data-Flow Analyses (ASE '21)

Language: F# - Size: 4.44 MB - Last synced at: 21 days ago - Pushed at: 3 months ago - Stars: 151 - Forks: 23

alexkohler/nakedret

nakedret is a Go static analysis tool to find naked returns in functions greater than a specified function length.

Language: Go - Size: 1.22 MB - Last synced at: 24 days ago - Pushed at: 24 days ago - Stars: 129 - Forks: 16

foospidy/GrepBugs

A regex based source code scanner.

Language: Python - Size: 1.6 MB - Last synced at: 14 days ago - Pushed at: about 8 years ago - Stars: 129 - Forks: 27

ajinabraham/libsast

Generic SAST Library

Language: Python - Size: 286 KB - Last synced at: 6 months ago - Pushed at: 10 months ago - Stars: 124 - Forks: 20

ropas/sparrow

The Sparrow Static Analyzer

Language: OCaml - Size: 307 KB - Last synced at: 7 months ago - Pushed at: over 3 years ago - Stars: 121 - Forks: 28

Beliavsky/Fortran-Tools

Links to Fortran compilers, preprocessors, formatters, static analyzers, transpilers, IDEs, build systems, etc.

Size: 1.17 MB - Last synced at: about 20 hours ago - Pushed at: about 22 hours ago - Stars: 120 - Forks: 11

integrated-application-development/sonar-delphi

Delphi language plugin for SonarQube

Language: Java - Size: 15.4 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 118 - Forks: 20

integrated-application-development/delphilint

Delphi IDE package providing on-the-fly code analysis and linting, powered by SonarDelphi

Language: Pascal - Size: 5.14 MB - Last synced at: 19 days ago - Pushed at: 19 days ago - Stars: 106 - Forks: 20

phpstan/phpstan-nette

Nette Framework class reflection extension for PHPStan & framework-specific rules

Language: PHP - Size: 282 KB - Last synced at: 3 days ago - Pushed at: 11 days ago - Stars: 100 - Forks: 37

cr0hn/dockerfile-security

Static security checker for Dockerfiles

Language: Python - Size: 43.9 KB - Last synced at: 1 day ago - Pushed at: about 1 year ago - Stars: 94 - Forks: 11

iarsystems/cmake-tutorial

Build and test embedded software using the IAR C/C++ Compiler alongside CMake

Language: CMake - Size: 132 KB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 85 - Forks: 18

dns-groot/groot

Static verification tool for DNS zone files

Language: C++ - Size: 1.45 MB - Last synced at: about 2 years ago - Pushed at: over 2 years ago - Stars: 73 - Forks: 7

alexkohler/unimport

unimport is a Go static analysis tool to find unnecessary import aliases.

Language: Go - Size: 14.6 KB - Last synced at: 5 months ago - Pushed at: over 7 years ago - Stars: 68 - Forks: 2

lisa-analyzer/lisa

📚 a modular easy to use Library for Static Analysis aiming at multi-language analysis

Language: Java - Size: 8.68 MB - Last synced at: 8 days ago - Pushed at: 9 days ago - Stars: 57 - Forks: 35

shramos/pyc-cfg

Pyc-cfg is a pure python control flow graph builder for almost all Ansi C programming language.

Language: Python - Size: 58.6 KB - Last synced at: 21 days ago - Pushed at: about 7 years ago - Stars: 52 - Forks: 13

racodond/sonar-css-plugin

SonarQube CSS / SCSS / Less Analyzer

Language: Java - Size: 5.67 MB - Last synced at: 24 days ago - Pushed at: almost 3 years ago - Stars: 48 - Forks: 24

flowr-analysis/flowr

A dataflow analysis framework for the R programming language.

Language: TypeScript - Size: 16.7 MB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 46 - Forks: 5

dsheiko/jscodesniffer

⛔️ [DEPRECATED] Tool to ensure that your JavaScript code does not violate the specified coding standard (Idiomatic Style Manifesto or JQuery Core Style Guidelines)

Language: HTML - Size: 1.17 MB - Last synced at: 4 days ago - Pushed at: almost 4 years ago - Stars: 43 - Forks: 7

sorra/Exia

Million-scale code analysis and refactoring toolkit for Java

Language: Java - Size: 10.7 MB - Last synced at: over 1 year ago - Pushed at: almost 6 years ago - Stars: 43 - Forks: 28

collab-uniba/pynblint

Pynblint is a linter for Python Jupyter notebooks.

Language: Python - Size: 2.07 MB - Last synced at: 19 days ago - Pushed at: 6 months ago - Stars: 40 - Forks: 2

0x00pf/STAN

STAN is a sTAtic aNalyser

Language: Shell - Size: 812 KB - Last synced at: 3 months ago - Pushed at: over 7 years ago - Stars: 39 - Forks: 1

fdiaz/SwiftInspector 📦

SwiftInspector is a command line tool built on top of SwiftSyntax to help inspect usage of Swift code

Language: Swift - Size: 429 KB - Last synced at: 1 day ago - Pushed at: over 2 years ago - Stars: 38 - Forks: 5

racodond/sonar-gherkin-plugin

SonarQube Cucumber Gherkin Analyzer

Language: Java - Size: 549 KB - Last synced at: 19 days ago - Pushed at: almost 3 years ago - Stars: 36 - Forks: 19

philippefichet/sonarlint4netbeans

SonarLint integration for Apache Netbeans

Language: Java - Size: 324 MB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 32 - Forks: 7

forefy/eburger

eBurger is a static analysis tool that provides a way to quickly query and analyze solidity smart contracts.

Language: Python - Size: 13 MB - Last synced at: 16 days ago - Pushed at: about 1 year ago - Stars: 31 - Forks: 4

sorra/TraceSonar

Call graph analyzer for Java

Language: Java - Size: 79.1 KB - Last synced at: about 2 years ago - Pushed at: over 4 years ago - Stars: 29 - Forks: 9

DeGraciaMathieu/php-smelly-code-detector

Detects code smells by assessing complexity to identify potentially problematic code

Language: PHP - Size: 40.2 MB - Last synced at: 3 days ago - Pushed at: about 2 months ago - Stars: 27 - Forks: 2

alexkohler/identypo

identypo is a Go static analysis tool to find typos in identifiers (functions, function calls, variables, constants, type declarations, packages, labels).

Language: Go - Size: 263 KB - Last synced at: 10 months ago - Pushed at: over 6 years ago - Stars: 27 - Forks: 0

alexkohler/cfmt

cfmt is a tool to wrap Go comments over a certain length to a new line.

Language: Go - Size: 32.2 KB - Last synced at: 10 months ago - Pushed at: about 7 years ago - Stars: 27 - Forks: 3

thyrlian/SonarOnDocker

🐳 📡 Docker way of running SonarQube + any DB

Language: Java - Size: 194 KB - Last synced at: 18 days ago - Pushed at: over 3 years ago - Stars: 25 - Forks: 15

phpstan/phpstan-php-parser 📦

PHP-Parser extension for PHPStan

Language: Makefile - Size: 81.1 KB - Last synced at: 7 days ago - Pushed at: over 1 year ago - Stars: 23 - Forks: 9

RightCapitalHQ/phpdoc-parser

Next-gen PHPDoc parser with support for intersection types and generics(TypeScript version)

Language: TypeScript - Size: 2.04 MB - Last synced at: 6 days ago - Pushed at: 11 days ago - Stars: 20 - Forks: 1

knsh14/gocc

check cyclomatic complexity of go functions

Language: Go - Size: 17.6 KB - Last synced at: 8 days ago - Pushed at: almost 4 years ago - Stars: 20 - Forks: 1

best-doctor/mr_proper

Static Python code analyzer, that tries to check if functions in code are pure or not and why.

Language: Python - Size: 250 KB - Last synced at: 22 days ago - Pushed at: about 2 years ago - Stars: 19 - Forks: 3

stoyicker/android-check-2 Fork of noveogroup/android-check

Static code analysis plugin for next-generation Android projects.

Language: XSLT - Size: 699 KB - Last synced at: 12 months ago - Pushed at: over 6 years ago - Stars: 19 - Forks: 5

JetBrains/ReSharper-InspectCode

C# static analysis on GitHub Actions using JetBrains ReSharper InspectCode.

Size: 86.9 KB - Last synced at: 8 days ago - Pushed at: 9 days ago - Stars: 18 - Forks: 1

dwat3r/slicer

Slicing tool for c++ programs using clang AST.

Language: C++ - Size: 36.7 MB - Last synced at: 9 months ago - Pushed at: about 4 years ago - Stars: 18 - Forks: 2

Correia-jpv/fucking-static-analysis

⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more. With repository stars⭐ and forks🍴

Language: Rust - Size: 40.9 MB - Last synced at: 16 days ago - Pushed at: 16 days ago - Stars: 17 - Forks: 0

phpstan/phpstan-dibi

Dibi class reflection extension for PHPStan

Language: PHP - Size: 95.7 KB - Last synced at: 4 days ago - Pushed at: 11 days ago - Stars: 16 - Forks: 9

whisperity/CodeChecker-Action

Execute static analysis through CodeChecker in the CI.

Language: Shell - Size: 72.3 KB - Last synced at: 10 days ago - Pushed at: about 2 years ago - Stars: 16 - Forks: 5

EvgenyOrekhov/lints 📦

Lint all your JavaScript, CSS, HTML, Markdown and Dockerfiles with a single command

Language: JavaScript - Size: 1.35 MB - Last synced at: 7 days ago - Pushed at: about 5 years ago - Stars: 16 - Forks: 3

racodond/sonar-jproperties-plugin

SonarQube Java Properties Analyzer

Language: Java - Size: 738 KB - Last synced at: 23 days ago - Pushed at: almost 3 years ago - Stars: 14 - Forks: 9

IagoAbal/eba

EBA is a static bug finder for C.

Language: OCaml - Size: 1.38 MB - Last synced at: 15 days ago - Pushed at: almost 5 years ago - Stars: 14 - Forks: 3

SRI-CSL/bixie

Inconsistent code detection for Java.

Language: Java - Size: 32 MB - Last synced at: 19 days ago - Pushed at: about 7 years ago - Stars: 14 - Forks: 6

DeGraciaMathieu/php-wording-detector

Simple tool to analyze and split the words contained in your code to check your DDD approach.

Language: PHP - Size: 72.7 MB - Last synced at: 7 days ago - Pushed at: 12 months ago - Stars: 13 - Forks: 0

DeGraciaMathieu/php-arguments-detector

Keep control over the complexity of your methods by checking that they do not have too many arguments.

Language: PHP - Size: 66.4 KB - Last synced at: 7 days ago - Pushed at: over 2 years ago - Stars: 13 - Forks: 1

awk-kazmin/sonar-1C

Language: Java - Size: 216 KB - Last synced at: about 2 years ago - Pushed at: almost 4 years ago - Stars: 13 - Forks: 4

marodev/EagleRepair

EagleRepair fixes static analysis warnings in C# programs. Easy to use. Blazing fast. Based on research.

Language: C# - Size: 2.69 MB - Last synced at: 26 days ago - Pushed at: about 2 years ago - Stars: 11 - Forks: 2

racodond/sonar-json-plugin

SonarQube JSON Analyzer

Language: Java - Size: 408 KB - Last synced at: 23 days ago - Pushed at: almost 3 years ago - Stars: 11 - Forks: 16

DeGraciaMathieu/php-git-insights-analyzer

Analyze the Git history of your PHP files

Language: PHP - Size: 17.9 MB - Last synced at: 7 days ago - Pushed at: about 1 year ago - Stars: 10 - Forks: 0

insidersec/insider-action

:octocat: Official Github Action for Insider

Language: TypeScript - Size: 612 KB - Last synced at: 10 days ago - Pushed at: over 2 years ago - Stars: 10 - Forks: 4

moves-rwth/attestor

A Shape Analysis Tool based on Graph Grammars

Language: Java - Size: 38.4 MB - Last synced at: about 1 year ago - Pushed at: over 2 years ago - Stars: 10 - Forks: 4

janwilmans/OpenCanary

A set of scripts for aggregation, analysis and reporting of build and static analysis results.

Language: Python - Size: 401 KB - Last synced at: 4 days ago - Pushed at: 5 months ago - Stars: 9 - Forks: 0

VincenzoArceri/rust-lisa

Rust frontend for LiSA

Language: Java - Size: 20.6 MB - Last synced at: about 1 year ago - Pushed at: almost 3 years ago - Stars: 8 - Forks: 0

guillaumealgis/XcodeWarningsAsXcconfig

Generate a xcconfig including all Xcode compilation warnings with sensible defaults

Language: Python - Size: 120 KB - Last synced at: about 11 hours ago - Pushed at: about 3 years ago - Stars: 8 - Forks: 2

moskirathe/JScent

A static progam analysis and visualization tool that detects code smells in a given JS codebase

Language: JavaScript - Size: 153 KB - Last synced at: 5 months ago - Pushed at: almost 4 years ago - Stars: 8 - Forks: 3

urbanjs/urbanjs-tools

Development stack for JavaScript

Language: TypeScript - Size: 627 KB - Last synced at: 8 days ago - Pushed at: over 7 years ago - Stars: 8 - Forks: 1

VPRLab/SoMo

A specialized tool for smart contract modifier analysis based on the Modifier Dependency Graph (MDG)

Language: Python - Size: 62.5 KB - Last synced at: 14 days ago - Pushed at: about 1 year ago - Stars: 7 - Forks: 0

yonyong/sonar-custom-pmd-plugin

由于目前自定义sonar插件开发没有统一的框架，实现比较复杂，因此开发了此骨架项目。开发者可以按照文档步骤新增自定义的sonar插件。

Language: Java - Size: 342 KB - Last synced at: 5 days ago - Pushed at: over 2 years ago - Stars: 7 - Forks: 0

x213212/Static-analyzer-in-gccplugin

Try to build a static analyzer in Gcc Plugin, the main application scenario is to detect memory-leak,double-free,use-after-free.

Language: C++ - Size: 96.4 MB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 6 - Forks: 2

kestreltechnology/ktadvance

KT Advance Memory Safety Analyzer for C

Language: C++ - Size: 1.66 GB - Last synced at: about 1 year ago - Pushed at: about 6 years ago - Stars: 6 - Forks: 3

kalidasya/sonar-css-plugin

SonarQube CSS / SCSS / Less Analyzer

Language: Java - Size: 4.83 MB - Last synced at: about 1 year ago - Pushed at: about 7 years ago - Stars: 6 - Forks: 1

bbc2/mini-android

Static analyzer for Android-like applications

Language: OCaml - Size: 215 KB - Last synced at: 15 days ago - Pushed at: over 10 years ago - Stars: 6 - Forks: 0

multiparty/carousels

Library for concisely defining abstract metrics over JavaScript syntax.

Language: JavaScript - Size: 296 MB - Last synced at: 6 days ago - Pushed at: about 2 years ago - Stars: 5 - Forks: 1

O72/JS_SAST

Static Application Security Testing Analyzer for JavaScript Source Code

Language: Python - Size: 60.5 KB - Last synced at: about 2 years ago - Pushed at: over 2 years ago - Stars: 5 - Forks: 1

evhub/undebt Fork of Yelp/undebt

Massive, automated code refactoring done better.

Language: Python - Size: 130 KB - Last synced at: 9 months ago - Pushed at: almost 6 years ago - Stars: 5 - Forks: 0