Topic: "static-code-analysis"
astral-sh/ruff
An extremely fast Python linter and code formatter, written in Rust.
Language: Rust - Size: 108 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 44,614 - Forks: 1,659
standard/standard
🌟 JavaScript Style Guide, with linter & automatic code fixer
Language: JavaScript - Size: 3.58 MB - Last synced at: 11 days ago - Pushed at: 6 months ago - Stars: 29,402 - Forks: 2,323
eslint/eslint
Find and fix problems in your JavaScript code.
Language: JavaScript - Size: 48.4 MB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 26,707 - Forks: 4,867
biomejs/biome
A toolchain for web projects, aimed to provide functionalities to maintain them. Biome offers formatter and linter, usable via CLI and LSP.
Language: Rust - Size: 222 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 22,745 - Forks: 789
facebook/infer
A static analyzer for Java, C, C++, and Objective-C
Language: OCaml - Size: 196 MB - Last synced at: 3 days ago - Pushed at: 4 days ago - Stars: 15,464 - Forks: 2,065
analysis-tools-dev/static-analysis
⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.
Language: Rust - Size: 39.6 MB - Last synced at: 2 days ago - Pushed at: 5 days ago - Stars: 14,268 - Forks: 1,408
semgrep/semgrep
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Language: OCaml - Size: 90.5 MB - Last synced at: about 12 hours ago - Pushed at: 1 day ago - Stars: 13,683 - Forks: 844
phpstan/phpstan
PHP Static Analysis Tool - discover bugs in your code without running it!
Language: PHP - Size: 6.23 GB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 13,681 - Forks: 931
rubocop/rubocop
A Ruby static code analyzer and formatter, based on the community Ruby style guide.
Language: Ruby - Size: 48.7 MB - Last synced at: 7 days ago - Pushed at: 8 days ago - Stars: 12,821 - Forks: 3,087
reviewdog/reviewdog
🐶 Automated code review tool integrated with any code analysis tools regardless of programming language
Language: Go - Size: 5.54 MB - Last synced at: 3 days ago - Pushed at: 4 days ago - Stars: 8,905 - Forks: 467
checkstyle/checkstyle
Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
Language: Java - Size: 206 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 8,769 - Forks: 3,924
securego/gosec
Go security checker
Language: Go - Size: 5.35 MB - Last synced at: 12 days ago - Pushed at: 13 days ago - Stars: 8,563 - Forks: 669
PyCQA/bandit
Bandit is a tool designed to find common security issues in Python code.
Language: Python - Size: 5.69 MB - Last synced at: 12 days ago - Pushed at: 15 days ago - Stars: 7,533 - Forks: 714
datreeio/datree 📦
Prevent Kubernetes misconfigurations from reaching production (again 😤 )! From code to cloud, Datree provides an E2E policy enforcement solution to run automatic checks for rule violations. See our docs: https://hub.datree.io
Language: Go - Size: 8.9 MB - Last synced at: 2 months ago - Pushed at: over 1 year ago - Stars: 6,357 - Forks: 360
pylint-dev/pylint
It's not just a linter that annoys you!
Language: Python - Size: 39.8 MB - Last synced at: 2 days ago - Pushed at: 8 days ago - Stars: 5,621 - Forks: 1,207
phan/phan
Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
Language: PHP - Size: 49.5 MB - Last synced at: 5 days ago - Pushed at: 11 days ago - Stars: 5,601 - Forks: 369
mgechev/revive
🔥 ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint
Language: Go - Size: 6.69 MB - Last synced at: 7 days ago - Pushed at: 8 days ago - Stars: 5,362 - Forks: 312
pmd/pmd
An extensible multilanguage static code analyzer.
Language: Java - Size: 524 MB - Last synced at: 4 days ago - Pushed at: 5 days ago - Stars: 5,267 - Forks: 1,545
google/pytype
A static type analyzer for Python code
Language: Python - Size: 42.5 MB - Last synced at: 5 days ago - Pushed at: 6 days ago - Stars: 5,027 - Forks: 289
uber/NullAway
A tool to help eliminate NullPointerExceptions (NPEs) in your Java code with low build-time overhead
Language: Java - Size: 7.18 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 3,968 - Forks: 325
spotbugs/spotbugs
SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.
Language: Java - Size: 141 MB - Last synced at: 2 days ago - Pushed at: 4 days ago - Stars: 3,794 - Forks: 646
PyCQA/flake8
flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.
Language: Python - Size: 3.59 MB - Last synced at: about 20 hours ago - Pushed at: 1 day ago - Stars: 3,741 - Forks: 337
zegl/kube-score
Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in your Kubernetes YAML and Charts. Static code analysis for Kubernetes.
Language: Go - Size: 989 KB - Last synced at: 2 days ago - Pushed at: 5 days ago - Stars: 3,009 - Forks: 194
standard/eslint-config-standard
ESLint Config for JavaScript Standard Style
Language: TypeScript - Size: 793 KB - Last synced at: 6 days ago - Pushed at: 11 days ago - Stars: 2,647 - Forks: 556
tach-org/tach
A Python tool to visualize + enforce dependencies, using modular architecture 🌎 Open source 🐍 Installable via pip 🔧 Able to be adopted incrementally - ⚡ Implemented with no runtime impact ♾️ Interoperable with your existing systems 🦀 Written in rust
Language: Rust - Size: 23.3 MB - Last synced at: 8 days ago - Pushed at: 17 days ago - Stars: 2,585 - Forks: 75
Bearer/bearer
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
Language: Go - Size: 23.8 MB - Last synced at: 25 days ago - Pushed at: 27 days ago - Stars: 2,487 - Forks: 133
mgechev/codelyzer
Static analysis for Angular projects.
Language: TypeScript - Size: 17.7 MB - Last synced at: 2 days ago - Pushed at: 19 days ago - Stars: 2,461 - Forks: 237
python-security/pyt
A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications
Language: Python - Size: 3.2 MB - Last synced at: 3 months ago - Pushed at: almost 5 years ago - Stars: 2,196 - Forks: 250
praetorian-inc/gokart 📦
A static analysis tool for securing Go code
Language: Go - Size: 189 KB - Last synced at: about 2 months ago - Pushed at: almost 2 years ago - Stars: 2,175 - Forks: 108
glebm/i18n-tasks
Manage translation and localization with static analysis, for Ruby i18n
Language: Ruby - Size: 2.99 MB - Last synced at: 7 days ago - Pushed at: 8 days ago - Stars: 2,146 - Forks: 279
Tencent/TscanCode
A static code analyzer for C++, C#, Lua
Language: C++ - Size: 37.5 MB - Last synced at: 7 months ago - Pushed at: almost 2 years ago - Stars: 2,059 - Forks: 596
rubberduck-vba/Rubberduck
Every programmer needs a rubberduck. COM add-in for the VBA & VB6 IDE (VBE).
Language: C# - Size: 101 MB - Last synced at: 6 months ago - Pushed at: 6 months ago - Stars: 2,020 - Forks: 309
ronami/HypeScript
🐬 A simplified implementation of TypeScript's type system written in TypeScript's type system
Language: TypeScript - Size: 2.15 MB - Last synced at: 7 months ago - Pushed at: 11 months ago - Stars: 1,954 - Forks: 23
phpstan/phpdoc-parser
Next-gen phpDoc parser with support for intersection types and generics
Language: PHP - Size: 979 KB - Last synced at: 6 days ago - Pushed at: 11 days ago - Stars: 1,502 - Forks: 65
kalessil/phpinspectionsea
A Static Code Analyzer for PHP (a PhpStorm/Idea Plugin)
Language: Java - Size: 127 MB - Last synced at: 15 days ago - Pushed at: 18 days ago - Stars: 1,473 - Forks: 115
twitter/compose-rules
Static checks to aid with a healthy adoption of Compose
Language: Kotlin - Size: 2.33 MB - Last synced at: 6 months ago - Pushed at: almost 2 years ago - Stars: 1,384 - Forks: 95
ipyflow/ipyflow
A reactive Python kernel for Jupyter notebooks.
Language: Python - Size: 23.8 MB - Last synced at: 21 days ago - Pushed at: 23 days ago - Stars: 1,253 - Forks: 24
SonarSource/sonar-java
:coffee: SonarSource Static Analyzer for Java Code Quality and Security
Language: Java - Size: 70.1 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 1,187 - Forks: 707
SonarSource/SonarJS
SonarSource Static Analyzer for JavaScript and TypeScript
Language: TypeScript - Size: 56.3 MB - Last synced at: 3 days ago - Pushed at: 4 days ago - Stars: 1,171 - Forks: 192
souffle-lang/souffle
Soufflé is a variant of Datalog for tool designers crafting analyses in Horn clauses. Soufflé synthesizes a native parallel C++ program from a logic specification.
Language: C++ - Size: 516 MB - Last synced at: 13 days ago - Pushed at: 14 days ago - Stars: 1,029 - Forks: 225
security-code-scan/security-code-scan
Vulnerability Patterns Detector for C# and VB.NET
Language: C# - Size: 6.17 MB - Last synced at: about 1 month ago - Pushed at: over 1 year ago - Stars: 965 - Forks: 161
mysticatea/eslint-plugin-node
Additional ESLint's rules for Node.js
Language: JavaScript - Size: 965 KB - Last synced at: 16 days ago - Pushed at: over 1 year ago - Stars: 960 - Forks: 180
SonarSource/sonar-dotnet
Code analyzer for C# and VB.NET projects
Language: C# - Size: 141 MB - Last synced at: 3 days ago - Pushed at: 4 days ago - Stars: 879 - Forks: 238
rubocop/rubocop-rails
A RuboCop extension focused on enforcing Rails best practices and coding conventions.
Language: Ruby - Size: 28.1 MB - Last synced at: 1 day ago - Pushed at: 4 days ago - Stars: 858 - Forks: 285
vincentcox/StaCoAn
StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.
Language: JavaScript - Size: 38.8 MB - Last synced at: 7 months ago - Pushed at: over 4 years ago - Stars: 848 - Forks: 133
wala/WALA
T.J. Watson Libraries for Analysis, with front ends for Java, Android, and JavaScript, and many common static program analyses.
Language: Java - Size: 59.1 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 825 - Forks: 238
coderaiser/putout
🐊 Pluggable and configurable JavaScript Linter, code transformer and formatter, drop-in ESLint superpower replacement 💪 with built-in support for js, jsx, typescript, markdown, yaml and json. Write declarative codemods in a simplest possible way 😏
Language: JavaScript - Size: 21.9 MB - Last synced at: 2 days ago - Pushed at: 4 days ago - Stars: 778 - Forks: 43
phpstan/phpstan-symfony
Symfony extension for PHPStan
Language: PHP - Size: 700 KB - Last synced at: 15 days ago - Pushed at: 21 days ago - Stars: 764 - Forks: 97
soot-oss/SootUp
A new version of Soot with a completely overhauled architecture
Language: Java - Size: 443 MB - Last synced at: 6 days ago - Pushed at: 7 days ago - Stars: 753 - Forks: 110
olacabs/jackhammer
Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
Language: Java - Size: 63.7 MB - Last synced at: 9 months ago - Pushed at: almost 2 years ago - Stars: 728 - Forks: 164
rubocop/rubocop-performance
An extension of RuboCop focused on code performance checks.
Language: Ruby - Size: 24.8 MB - Last synced at: 2 days ago - Pushed at: 4 days ago - Stars: 725 - Forks: 88
FloeDesignTechnologies/phpcs-security-audit
phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code
Language: PHP - Size: 214 KB - Last synced at: 3 months ago - Pushed at: almost 3 years ago - Stars: 722 - Forks: 82
scalastyle/scalastyle
scalastyle
Language: Scala - Size: 1.63 MB - Last synced at: 4 days ago - Pushed at: over 3 years ago - Stars: 675 - Forks: 215
phpstan/phpstan-strict-rules
Extra strict and opinionated rules for PHPStan
Language: PHP - Size: 405 KB - Last synced at: 15 days ago - Pushed at: 23 days ago - Stars: 673 - Forks: 55
alexkohler/prealloc
prealloc is a Go static analysis tool to find slice declarations that could potentially be preallocated.
Language: Go - Size: 108 KB - Last synced at: 2 days ago - Pushed at: 5 days ago - Stars: 659 - Forks: 24
phpstan/phpstan-doctrine
Doctrine extensions for PHPStan
Language: PHP - Size: 1.11 MB - Last synced at: 18 days ago - Pushed at: 21 days ago - Stars: 646 - Forks: 112
pep8speaks-org/pep8speaks
A GitHub :octocat: app to automatically review Python code style over Pull Requests
Language: Python - Size: 4.74 MB - Last synced at: about 2 months ago - Pushed at: 2 months ago - Stars: 619 - Forks: 88
pylint-dev/astroid
A common base representation of python source code for pylint and other projects
Language: Python - Size: 16.9 MB - Last synced at: 11 days ago - Pushed at: 11 days ago - Stars: 569 - Forks: 308
glayzzle/php-parser
:herb: NodeJS PHP Parser - extract AST or tokens
Language: JavaScript - Size: 29.6 MB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 547 - Forks: 73
eslint/markdown
Lint JavaScript code blocks in Markdown documents
Language: JavaScript - Size: 920 KB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 528 - Forks: 84
mchalupa/dg
[LLVM Static Slicer] Various program analyses, construction of dependence graphs and program slicing of LLVM bitcode.
Language: C++ - Size: 5.74 MB - Last synced at: 7 months ago - Pushed at: 7 months ago - Stars: 505 - Forks: 137
phpstan/phpstan-phpunit
PHPUnit extensions and rules for PHPStan
Language: PHP - Size: 334 KB - Last synced at: 3 months ago - Pushed at: 4 months ago - Stars: 504 - Forks: 50
vuejs/vue-eslint-parser
The ESLint custom parser for `.vue` files.
Language: TypeScript - Size: 2.23 MB - Last synced at: 6 days ago - Pushed at: 5 months ago - Stars: 484 - Forks: 76
droidefense/engine
Droidefense: Advance Android Malware Analysis Framework
Language: Java - Size: 198 MB - Last synced at: 2 months ago - Pushed at: about 3 years ago - Stars: 478 - Forks: 105
slackhq/compose-lints
Lint checks to aid with a healthy adoption of Compose
Language: Kotlin - Size: 4.27 MB - Last synced at: 6 days ago - Pushed at: 8 days ago - Stars: 459 - Forks: 31
standard/eslint-config-standard-react
ESLint Shareable Config for React/JSX support in JavaScript Standard Style
Language: JavaScript - Size: 80.1 KB - Last synced at: 8 days ago - Pushed at: over 2 years ago - Stars: 458 - Forks: 86
guilatrova/tryceratops
A linter to prevent exception handling antipatterns in Python (limited only for those who like dinosaurs).
Language: Python - Size: 1.49 MB - Last synced at: 2 months ago - Pushed at: about 1 year ago - Stars: 446 - Forks: 25
amit-davidson/Chronos
Chronos - A static race detector for the go language
Language: Go - Size: 13.4 MB - Last synced at: 8 months ago - Pushed at: over 3 years ago - Stars: 435 - Forks: 11
phpstan/phpstan-deprecation-rules
PHPStan rules for detecting usage of deprecated classes, methods, properties, constants and traits.
Language: PHP - Size: 231 KB - Last synced at: 11 days ago - Pushed at: 11 days ago - Stars: 432 - Forks: 20
SonarSource/sonar-php
:elephant: SonarPHP: PHP static analyzer for SonarQube & SonarLint
Language: Java - Size: 23.3 MB - Last synced at: 2 days ago - Pushed at: 4 days ago - Stars: 424 - Forks: 108
sharpenrocks/Sharpen
Visual Studio extension that intelligently introduces new C# features into your existing codebase
Language: C# - Size: 4.96 MB - Last synced at: 6 days ago - Pushed at: about 3 years ago - Stars: 416 - Forks: 30
standard/awesome-standard
Documenting the explosion of packages in the standard ecosystem!
Size: 34.2 KB - Last synced at: 9 days ago - Pushed at: over 2 years ago - Stars: 402 - Forks: 35
JetBrains/Qodana
📝 Source repository of Qodana Help
Size: 258 MB - Last synced at: 11 days ago - Pushed at: 12 days ago - Stars: 399 - Forks: 82
MaibornWolff/codecharta
CodeCharta is a visualization tool that transforms complex software architecture and code metrics into interactive, customizable visual maps, empowering everyone to communicate and analyze your codebase. Improve code quality, maintainability, and architectural decisions
Language: TypeScript - Size: 137 MB - Last synced at: 2 days ago - Pushed at: 4 days ago - Stars: 384 - Forks: 44
Technologicat/pyan
Static call graph generator. The official Python 3 version. Development repo.
Language: Python - Size: 1.12 MB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 384 - Forks: 69
policeman-tools/forbidden-apis
Policeman's Forbidden API Checker
Language: Java - Size: 1.48 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 358 - Forks: 37
Shopify/theme-check 📦
The Ultimate Shopify Theme Linter
Language: Ruby - Size: 3.49 MB - Last synced at: 3 days ago - Pushed at: over 1 year ago - Stars: 354 - Forks: 93
jenkinsci/warnings-ng-plugin
Jenkins Warnings Plugin - Next Generation
Language: Java - Size: 27.4 MB - Last synced at: 6 days ago - Pushed at: 7 days ago - Stars: 352 - Forks: 286
designsecurity/progpilot
A static analysis tool for security
Language: PHP - Size: 26.3 MB - Last synced at: 2 months ago - Pushed at: 4 months ago - Stars: 352 - Forks: 63
baikaishuipp/jcci
Java code commit impact, java code change impact analysis,java代码改动影响范围分析工具,精准测试,回归测试范围划定
Language: Python - Size: 1.75 MB - Last synced at: 3 months ago - Pushed at: about 1 year ago - Stars: 325 - Forks: 56
JetBrains/qodana-action
⚙️ Scan your Go, Java, Kotlin, PHP, Python, JavaScript, TypeScript, .NET projects at GitHub with Qodana. This repository contains Qodana for Azure, GitHub, CircleCI and Gradle
Language: JavaScript - Size: 24.7 MB - Last synced at: 2 days ago - Pushed at: 5 days ago - Stars: 298 - Forks: 42
cs-au-dk/TIP
Static program analysis for TIP
Language: Scala - Size: 3.33 MB - Last synced at: 6 months ago - Pushed at: 8 months ago - Stars: 293 - Forks: 136
codeintegrity-ai/mutahunter
Open Source, Language Agnostic Mutation Testing
Language: Python - Size: 1.63 MB - Last synced at: about 1 month ago - Pushed at: 8 months ago - Stars: 284 - Forks: 24
jborgers/sonar-pmd
☕️ PMD Plugin for SonarQube
Language: Java - Size: 5.46 MB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 283 - Forks: 162
scheb/tombstone
Dead code detection with tombstones for PHP 🪦🧟
Language: PHP - Size: 1.29 MB - Last synced at: 2 days ago - Pushed at: 4 days ago - Stars: 279 - Forks: 22
jfmengels/elm-review
Analyzes Elm projects, to help find mistakes before your users find them.
Language: Elm - Size: 5.57 MB - Last synced at: 8 days ago - Pushed at: 10 days ago - Stars: 275 - Forks: 13
usagitoneko97/klara
Automatic test case generation for python and static analysis library
Language: Python - Size: 9.13 MB - Last synced at: 3 months ago - Pushed at: over 3 years ago - Stars: 262 - Forks: 13
abaplint/abaplint
Standalone static analysis for ABAP
Language: TypeScript - Size: 84 MB - Last synced at: 8 days ago - Pushed at: 9 days ago - Stars: 253 - Forks: 81
webarx-security/wpbullet
A static code analysis for WordPress (and PHP)
Language: Python - Size: 227 KB - Last synced at: 5 months ago - Pushed at: over 3 years ago - Stars: 240 - Forks: 47
realvizu/NsDepCop
NsDepCop is a static code analysis tool that enforces namespace and assembly dependency rules in C# projects.
Language: C# - Size: 16.7 MB - Last synced at: about 1 month ago - Pushed at: 9 months ago - Stars: 239 - Forks: 32
Feysh-Group/corax-community
Corax for Java: A general static analysis framework for java code checking.
Language: Kotlin - Size: 38 MB - Last synced at: 10 months ago - Pushed at: about 1 year ago - Stars: 239 - Forks: 20
felipebz/zpa
Parser and static code analysis tool for PL/SQL and Oracle SQL.
Language: Kotlin - Size: 6.93 MB - Last synced at: 5 days ago - Pushed at: 8 days ago - Stars: 235 - Forks: 81
DmitryTsepelev/rubocop-graphql
Rubocop extension for enforcing graphql-ruby best practices
Language: Ruby - Size: 319 KB - Last synced at: 7 days ago - Pushed at: 9 days ago - Stars: 232 - Forks: 50
goblint/analyzer
Static analysis framework for C
Language: OCaml - Size: 40.4 MB - Last synced at: 10 days ago - Pushed at: 11 days ago - Stars: 225 - Forks: 85
JetBrains/qodana-cli
🔧 JetBrains Qodana’s official command line tool
Language: Go - Size: 3.89 MB - Last synced at: 2 days ago - Pushed at: 5 days ago - Stars: 219 - Forks: 28
chebuya/sastsweep
tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such as popularity and project size
Language: Go - Size: 9 MB - Last synced at: 11 months ago - Pushed at: 11 months ago - Stars: 208 - Forks: 20
TouK/sputnik
Static code review for your Gerrit patchsets. Runs Checkstyle, PMD, FindBugs, Scalastyle, CodeNarc, JSLint for you!
Language: Java - Size: 2.87 MB - Last synced at: 3 months ago - Pushed at: almost 2 years ago - Stars: 203 - Forks: 120
cs-au-dk/TAJS 📦
Type Analyzer for JavaScript
Language: Java - Size: 76.2 MB - Last synced at: 10 months ago - Pushed at: 11 months ago - Stars: 194 - Forks: 40
Perl-Critic/Perl-Critic
The leading static analyzer for Perl. Configurable, extensible, powerful.
Language: Perl - Size: 19.2 MB - Last synced at: 8 months ago - Pushed at: about 1 year ago - Stars: 186 - Forks: 104
phpstan/phpstan-webmozart-assert
PHPStan extension for webmozart/assert
Language: PHP - Size: 242 KB - Last synced at: 6 days ago - Pushed at: 7 days ago - Stars: 181 - Forks: 28