Topic: "static-code-analysis"
astral-sh/ruff
An extremely fast Python linter and code formatter, written in Rust.
Language: Rust - Size: 97.3 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 43,573 - Forks: 1,600
standard/standard
🌟 JavaScript Style Guide, with linter & automatic code fixer
Language: JavaScript - Size: 3.58 MB - Last synced at: 14 days ago - Pushed at: 4 months ago - Stars: 29,374 - Forks: 2,323
eslint/eslint
Find and fix problems in your JavaScript code.
Language: JavaScript - Size: 48.1 MB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 26,622 - Forks: 4,833
biomejs/biome
A toolchain for web projects, aimed to provide functionalities to maintain them. Biome offers formatter and linter, usable via CLI and LSP.
Language: Rust - Size: 217 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 21,987 - Forks: 741
facebook/infer
A static analyzer for Java, C, C++, and Objective-C
Language: OCaml - Size: 194 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 15,424 - Forks: 2,058
analysis-tools-dev/static-analysis
⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.
Language: Rust - Size: 40.1 MB - Last synced at: 18 days ago - Pushed at: 23 days ago - Stars: 14,156 - Forks: 1,404
phpstan/phpstan
PHP Static Analysis Tool - discover bugs in your code without running it!
Language: PHP - Size: 6.23 GB - Last synced at: 21 days ago - Pushed at: 21 days ago - Stars: 13,681 - Forks: 931
semgrep/semgrep
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Language: OCaml - Size: 90.4 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 13,240 - Forks: 818
rubocop/rubocop
A Ruby static code analyzer and formatter, based on the community Ruby style guide.
Language: Ruby - Size: 48.4 MB - Last synced at: 7 days ago - Pushed at: 9 days ago - Stars: 12,804 - Forks: 3,089
reviewdog/reviewdog
🐶 Automated code review tool integrated with any code analysis tools regardless of programming language
Language: Go - Size: 5.42 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 8,810 - Forks: 459
checkstyle/checkstyle
Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
Language: Java - Size: 202 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 8,737 - Forks: 3,889
securego/gosec
Go security checker
Language: Go - Size: 5.26 MB - Last synced at: 20 days ago - Pushed at: 20 days ago - Stars: 8,491 - Forks: 663
PyCQA/bandit
Bandit is a tool designed to find common security issues in Python code.
Language: Python - Size: 5.65 MB - Last synced at: 12 days ago - Pushed at: 20 days ago - Stars: 7,414 - Forks: 699
datreeio/datree 📦
Prevent Kubernetes misconfigurations from reaching production (again 😤 )! From code to cloud, Datree provides an E2E policy enforcement solution to run automatic checks for rule violations. See our docs: https://hub.datree.io
Language: Go - Size: 8.9 MB - Last synced at: 21 days ago - Pushed at: over 1 year ago - Stars: 6,357 - Forks: 360
phan/phan
Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
Language: PHP - Size: 49.6 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 5,594 - Forks: 370
pylint-dev/pylint
It's not just a linter that annoys you!
Language: Python - Size: 39.8 MB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 5,590 - Forks: 1,197
mgechev/revive
🔥 ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint
Language: Go - Size: 6.51 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 5,325 - Forks: 313
pmd/pmd
An extensible multilanguage static code analyzer.
Language: Java - Size: 518 MB - Last synced at: 8 days ago - Pushed at: 8 days ago - Stars: 5,237 - Forks: 1,530
google/pytype
A static type analyzer for Python code
Language: Python - Size: 42.5 MB - Last synced at: 12 days ago - Pushed at: 12 days ago - Stars: 5,009 - Forks: 289
uber/NullAway
A tool to help eliminate NullPointerExceptions (NPEs) in your Java code with low build-time overhead
Language: Java - Size: 7.07 MB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 3,905 - Forks: 320
spotbugs/spotbugs
SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.
Language: Java - Size: 141 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 3,765 - Forks: 638
PyCQA/flake8
flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.
Language: Python - Size: 3.57 MB - Last synced at: 6 days ago - Pushed at: 24 days ago - Stars: 3,713 - Forks: 336
zegl/kube-score
Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in your Kubernetes YAML and Charts. Static code analysis for Kubernetes.
Language: Go - Size: 1000 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 2,967 - Forks: 189
standard/eslint-config-standard
ESLint Config for JavaScript Standard Style
Language: TypeScript - Size: 772 KB - Last synced at: 9 days ago - Pushed at: 18 days ago - Stars: 2,648 - Forks: 555
gauge-sh/tach
A Python tool to visualize + enforce dependencies, using modular architecture 🌎 Open source 🐍 Installable via pip 🔧 Able to be adopted incrementally - ⚡ Implemented with no runtime impact ♾️ Interoperable with your existing systems 🦀 Written in rust
Language: Rust - Size: 22.8 MB - Last synced at: 10 days ago - Pushed at: 13 days ago - Stars: 2,535 - Forks: 70
mgechev/codelyzer
Static analysis for Angular projects.
Language: TypeScript - Size: 17.7 MB - Last synced at: 16 days ago - Pushed at: 19 days ago - Stars: 2,458 - Forks: 237
Bearer/bearer
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
Language: Go - Size: 23.7 MB - Last synced at: 13 days ago - Pushed at: 13 days ago - Stars: 2,433 - Forks: 130
python-security/pyt
A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications
Language: Python - Size: 3.2 MB - Last synced at: about 1 month ago - Pushed at: almost 5 years ago - Stars: 2,196 - Forks: 250
praetorian-inc/gokart 📦
A static analysis tool for securing Go code
Language: Go - Size: 189 KB - Last synced at: 6 days ago - Pushed at: almost 2 years ago - Stars: 2,175 - Forks: 108
glebm/i18n-tasks
Manage translation and localization with static analysis, for Ruby i18n
Language: Ruby - Size: 3 MB - Last synced at: 4 days ago - Pushed at: 23 days ago - Stars: 2,145 - Forks: 278
Tencent/TscanCode
A static code analyzer for C++, C#, Lua
Language: C++ - Size: 37.5 MB - Last synced at: 5 months ago - Pushed at: almost 2 years ago - Stars: 2,059 - Forks: 596
rubberduck-vba/Rubberduck
Every programmer needs a rubberduck. COM add-in for the VBA & VB6 IDE (VBE).
Language: C# - Size: 101 MB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 2,020 - Forks: 309
ronami/HypeScript
🐬 A simplified implementation of TypeScript's type system written in TypeScript's type system
Language: TypeScript - Size: 2.15 MB - Last synced at: 6 months ago - Pushed at: 9 months ago - Stars: 1,954 - Forks: 23
phpstan/phpdoc-parser
Next-gen phpDoc parser with support for intersection types and generics
Language: PHP - Size: 981 KB - Last synced at: 8 days ago - Pushed at: 15 days ago - Stars: 1,484 - Forks: 66
kalessil/phpinspectionsea
A Static Code Analyzer for PHP (a PhpStorm/Idea Plugin)
Language: Java - Size: 127 MB - Last synced at: about 1 month ago - Pushed at: 4 months ago - Stars: 1,474 - Forks: 117
twitter/compose-rules
Static checks to aid with a healthy adoption of Compose
Language: Kotlin - Size: 2.33 MB - Last synced at: 4 months ago - Pushed at: almost 2 years ago - Stars: 1,384 - Forks: 95
ipyflow/ipyflow
A reactive Python kernel for Jupyter notebooks.
Language: Python - Size: 23.5 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 1,245 - Forks: 24
SonarSource/sonar-java
:coffee: SonarSource Static Analyzer for Java Code Quality and Security
Language: Java - Size: 69 MB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 1,182 - Forks: 704
SonarSource/SonarJS
SonarSource Static Analyzer for JavaScript and TypeScript
Language: TypeScript - Size: 93.9 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 1,160 - Forks: 191
souffle-lang/souffle
Soufflé is a variant of Datalog for tool designers crafting analyses in Horn clauses. Soufflé synthesizes a native parallel C++ program from a logic specification.
Language: C++ - Size: 516 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 1,018 - Forks: 224
security-code-scan/security-code-scan
Vulnerability Patterns Detector for C# and VB.NET
Language: C# - Size: 6.17 MB - Last synced at: 5 days ago - Pushed at: over 1 year ago - Stars: 965 - Forks: 161
mysticatea/eslint-plugin-node
Additional ESLint's rules for Node.js
Language: JavaScript - Size: 965 KB - Last synced at: 12 days ago - Pushed at: over 1 year ago - Stars: 960 - Forks: 182
SonarSource/sonar-dotnet
Code analyzer for C# and VB.NET projects
Language: C# - Size: 138 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 872 - Forks: 234
rubocop/rubocop-rails
A RuboCop extension focused on enforcing Rails best practices and coding conventions.
Language: Ruby - Size: 28.4 MB - Last synced at: 6 days ago - Pushed at: 8 days ago - Stars: 850 - Forks: 285
vincentcox/StaCoAn
StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.
Language: JavaScript - Size: 38.8 MB - Last synced at: 6 months ago - Pushed at: over 4 years ago - Stars: 848 - Forks: 133
wala/WALA
T.J. Watson Libraries for Analysis, with front ends for Java, Android, and JavaScript, and many common static program analyses.
Language: Java - Size: 58.3 MB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 821 - Forks: 238
coderaiser/putout
🐊 Pluggable and configurable JavaScript Linter, code transformer and formatter, drop-in ESLint superpower replacement 💪 with built-in support for js, jsx, typescript, markdown, yaml and json. Write declarative codemods in a simplest possible way 😏
Language: JavaScript - Size: 20 MB - Last synced at: about 11 hours ago - Pushed at: about 11 hours ago - Stars: 773 - Forks: 42
phpstan/phpstan-symfony
Symfony extension for PHPStan
Language: PHP - Size: 693 KB - Last synced at: about 5 hours ago - Pushed at: 8 days ago - Stars: 759 - Forks: 95
soot-oss/SootUp
A new version of Soot with a completely overhauled architecture
Language: Java - Size: 379 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 744 - Forks: 103
olacabs/jackhammer
Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
Language: Java - Size: 63.7 MB - Last synced at: 8 months ago - Pushed at: over 1 year ago - Stars: 728 - Forks: 164
FloeDesignTechnologies/phpcs-security-audit
phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code
Language: PHP - Size: 214 KB - Last synced at: about 2 months ago - Pushed at: almost 3 years ago - Stars: 722 - Forks: 82
rubocop/rubocop-performance
An extension of RuboCop focused on code performance checks.
Language: Ruby - Size: 24.8 MB - Last synced at: 7 days ago - Pushed at: 22 days ago - Stars: 721 - Forks: 88
scalastyle/scalastyle
scalastyle
Language: Scala - Size: 1.63 MB - Last synced at: 4 months ago - Pushed at: about 3 years ago - Stars: 674 - Forks: 217
phpstan/phpstan-strict-rules
Extra strict and opinionated rules for PHPStan
Language: PHP - Size: 403 KB - Last synced at: 28 days ago - Pushed at: about 1 month ago - Stars: 663 - Forks: 54
alexkohler/prealloc
prealloc is a Go static analysis tool to find slice declarations that could potentially be preallocated.
Language: Go - Size: 59.6 KB - Last synced at: 3 months ago - Pushed at: over 1 year ago - Stars: 655 - Forks: 24
phpstan/phpstan-doctrine
Doctrine extensions for PHPStan
Language: PHP - Size: 1.13 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 645 - Forks: 112
pep8speaks-org/pep8speaks
A GitHub :octocat: app to automatically review Python code style over Pull Requests
Language: Python - Size: 4.74 MB - Last synced at: 12 days ago - Pushed at: 27 days ago - Stars: 619 - Forks: 88
pylint-dev/astroid
A common base representation of python source code for pylint and other projects
Language: Python - Size: 16.9 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 561 - Forks: 305
glayzzle/php-parser
:herb: NodeJS PHP Parser - extract AST or tokens
Language: JavaScript - Size: 29.6 MB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 547 - Forks: 73
eslint/markdown
Lint JavaScript code blocks in Markdown documents
Language: JavaScript - Size: 904 KB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 514 - Forks: 80
mchalupa/dg
[LLVM Static Slicer] Various program analyses, construction of dependence graphs and program slicing of LLVM bitcode.
Language: C++ - Size: 5.74 MB - Last synced at: 5 months ago - Pushed at: 6 months ago - Stars: 505 - Forks: 137
phpstan/phpstan-phpunit
PHPUnit extensions and rules for PHPStan
Language: PHP - Size: 334 KB - Last synced at: about 2 months ago - Pushed at: 2 months ago - Stars: 504 - Forks: 50
vuejs/vue-eslint-parser
The ESLint custom parser for `.vue` files.
Language: TypeScript - Size: 2.23 MB - Last synced at: 1 day ago - Pushed at: 3 months ago - Stars: 481 - Forks: 77
droidefense/engine
Droidefense: Advance Android Malware Analysis Framework
Language: Java - Size: 198 MB - Last synced at: 17 days ago - Pushed at: almost 3 years ago - Stars: 478 - Forks: 105
slackhq/compose-lints
Lint checks to aid with a healthy adoption of Compose
Language: Kotlin - Size: 4.27 MB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 457 - Forks: 31
standard/eslint-config-standard-react
ESLint Shareable Config for React/JSX support in JavaScript Standard Style
Language: JavaScript - Size: 80.1 KB - Last synced at: about 2 months ago - Pushed at: about 2 years ago - Stars: 455 - Forks: 85
guilatrova/tryceratops
A linter to prevent exception handling antipatterns in Python (limited only for those who like dinosaurs).
Language: Python - Size: 1.49 MB - Last synced at: 18 days ago - Pushed at: about 1 year ago - Stars: 446 - Forks: 25
amit-davidson/Chronos
Chronos - A static race detector for the go language
Language: Go - Size: 13.4 MB - Last synced at: 6 months ago - Pushed at: over 3 years ago - Stars: 435 - Forks: 11
phpstan/phpstan-deprecation-rules
PHPStan rules for detecting usage of deprecated classes, methods, properties, constants and traits.
Language: PHP - Size: 250 KB - Last synced at: 13 days ago - Pushed at: 13 days ago - Stars: 427 - Forks: 20
SonarSource/sonar-php
:elephant: SonarPHP: PHP static analyzer for SonarQube & SonarLint
Language: Java - Size: 22.1 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 420 - Forks: 108
sharpenrocks/Sharpen
Visual Studio extension that intelligently introduces new C# features into your existing codebase
Language: C# - Size: 4.96 MB - Last synced at: 6 months ago - Pushed at: almost 3 years ago - Stars: 415 - Forks: 31
standard/awesome-standard
Documenting the explosion of packages in the standard ecosystem!
Size: 34.2 KB - Last synced at: about 24 hours ago - Pushed at: about 2 years ago - Stars: 400 - Forks: 34
JetBrains/Qodana
📝 Source repository of Qodana Help
Size: 252 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 398 - Forks: 84
Technologicat/pyan
Static call graph generator. The official Python 3 version. Development repo.
Language: Python - Size: 1.12 MB - Last synced at: 2 days ago - Pushed at: 3 days ago - Stars: 384 - Forks: 69
policeman-tools/forbidden-apis
Policeman's Forbidden API Checker
Language: Java - Size: 1.48 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 358 - Forks: 37
jenkinsci/warnings-ng-plugin
Jenkins Warnings Plugin - Next Generation
Language: Java - Size: 27.3 MB - Last synced at: 5 days ago - Pushed at: 6 days ago - Stars: 352 - Forks: 285
designsecurity/progpilot
A static analysis tool for security
Language: PHP - Size: 26.3 MB - Last synced at: 17 days ago - Pushed at: 3 months ago - Stars: 352 - Forks: 63
Shopify/theme-check 📦
The Ultimate Shopify Theme Linter
Language: Ruby - Size: 3.49 MB - Last synced at: 7 days ago - Pushed at: over 1 year ago - Stars: 351 - Forks: 94
MaibornWolff/codecharta
CodeCharta is a visualization tool that transforms complex software architecture and code metrics into interactive, customizable visual maps, empowering everyone to communicate and analyze your codebase. Improve code quality, maintainability, and architectural decisions
Language: TypeScript - Size: 125 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 347 - Forks: 42
baikaishuipp/jcci
Java code commit impact, java code change impact analysis,java代码改动影响范围分析工具,精准测试,回归测试范围划定
Language: Python - Size: 1.75 MB - Last synced at: about 2 months ago - Pushed at: 11 months ago - Stars: 325 - Forks: 56
JetBrains/qodana-action
⚙️ Scan your Go, Java, Kotlin, PHP, Python, JavaScript, TypeScript, .NET projects at GitHub with Qodana. This repository contains Qodana for Azure, GitHub, CircleCI and Gradle
Language: JavaScript - Size: 23.4 MB - Last synced at: 8 days ago - Pushed at: 8 days ago - Stars: 294 - Forks: 42
cs-au-dk/TIP
Static program analysis for TIP
Language: Scala - Size: 3.33 MB - Last synced at: 4 months ago - Pushed at: 6 months ago - Stars: 293 - Forks: 136
jborgers/sonar-pmd
☕️ PMD Plugin for SonarQube
Language: Java - Size: 5.46 MB - Last synced at: 8 days ago - Pushed at: 8 days ago - Stars: 283 - Forks: 162
scheb/tombstone
Dead code detection with tombstones for PHP 🪦🧟
Language: PHP - Size: 1.26 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 276 - Forks: 21
codeintegrity-ai/mutahunter
Open Source, Language Agnostic Mutation Testing
Language: Python - Size: 1.63 MB - Last synced at: 4 months ago - Pushed at: 7 months ago - Stars: 275 - Forks: 22
jfmengels/elm-review
Analyzes Elm projects, to help find mistakes before your users find them.
Language: Elm - Size: 6.7 MB - Last synced at: 2 days ago - Pushed at: 3 months ago - Stars: 272 - Forks: 13
usagitoneko97/klara
Automatic test case generation for python and static analysis library
Language: Python - Size: 9.13 MB - Last synced at: about 1 month ago - Pushed at: over 3 years ago - Stars: 262 - Forks: 13
abaplint/abaplint
Standalone static analysis for ABAP
Language: TypeScript - Size: 81.2 MB - Last synced at: 13 days ago - Pushed at: 15 days ago - Stars: 247 - Forks: 80
webarx-security/wpbullet
A static code analysis for WordPress (and PHP)
Language: Python - Size: 227 KB - Last synced at: 3 months ago - Pushed at: about 3 years ago - Stars: 240 - Forks: 47
Feysh-Group/corax-community
Corax for Java: A general static analysis framework for java code checking.
Language: Kotlin - Size: 38 MB - Last synced at: 8 months ago - Pushed at: 11 months ago - Stars: 239 - Forks: 20
felipebz/zpa
Parser and static code analysis tool for PL/SQL and Oracle SQL.
Language: Kotlin - Size: 6.91 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 232 - Forks: 81
DmitryTsepelev/rubocop-graphql
Rubocop extension for enforcing graphql-ruby best practices
Language: Ruby - Size: 314 KB - Last synced at: 2 days ago - Pushed at: 3 months ago - Stars: 231 - Forks: 50
realvizu/NsDepCop
NsDepCop is a static code analysis tool that enforces namespace and assembly dependency rules in C# projects.
Language: C# - Size: 16.7 MB - Last synced at: 17 days ago - Pushed at: 7 months ago - Stars: 218 - Forks: 32
goblint/analyzer
Static analysis framework for C
Language: OCaml - Size: 39.6 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 214 - Forks: 84
JetBrains/qodana-cli
🔧 JetBrains Qodana’s official command line tool
Language: Go - Size: 3.51 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 212 - Forks: 28
chebuya/sastsweep
tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such as popularity and project size
Language: Go - Size: 9 MB - Last synced at: 9 months ago - Pushed at: 9 months ago - Stars: 208 - Forks: 20
TouK/sputnik
Static code review for your Gerrit patchsets. Runs Checkstyle, PMD, FindBugs, Scalastyle, CodeNarc, JSLint for you!
Language: Java - Size: 2.87 MB - Last synced at: about 1 month ago - Pushed at: over 1 year ago - Stars: 203 - Forks: 120
cs-au-dk/TAJS 📦
Type Analyzer for JavaScript
Language: Java - Size: 76.2 MB - Last synced at: 8 months ago - Pushed at: 9 months ago - Stars: 194 - Forks: 40
Perl-Critic/Perl-Critic
The leading static analyzer for Perl. Configurable, extensible, powerful.
Language: Perl - Size: 19.2 MB - Last synced at: 7 months ago - Pushed at: about 1 year ago - Stars: 186 - Forks: 104
exussum12/coverageChecker
Allows old code to use new standards
Language: PHP - Size: 281 KB - Last synced at: 7 days ago - Pushed at: over 1 year ago - Stars: 177 - Forks: 18
