Trending repositories for topic static-code-analysis

An extremely fast Python linter and code formatter, written in Rust.

A toolchain for web projects, aimed to provide functionalities to maintain them. Biome offers formatter and linter, usable via CLI and LSP.

A Python tool to enforce dependencies, using modular architecture 🌎 Open source 🐍 Installable via pip 🔧 Able to be adopted incrementally - ⚡ Implemented with no runtime impact ♾️ Interoperable with...

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

🐶 Automated code review tool integrated with any code analysis tools regardless of programming language

Find and fix problems in your JavaScript code.

⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.

It's not just a linter that annoys you!

Bandit is a tool designed to find common security issues in Python code.

🔥 ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint

flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.

Automatically detect potential vulnerabilities and analyze repository metrics to prioritize open source security research targets

Go security checker

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.

Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly confi...

RuboCop extension focused on higher-level concepts, like checking that code reads from top to bottom

Corax for Java: A general static analysis framework for java code checking.

A new version of Soot with a completely overhauled architecture

T.J. Watson Libraries for Analysis, with frontends for Java, Android, and JavaScript, and may common static program analyses

A Python tool to enforce dependencies, using modular architecture 🌎 Open source 🐍 Installable via pip 🔧 Able to be adopted incrementally - ⚡ Implemented with no runtime impact ♾️ Interoperable with...

Automatically detect potential vulnerabilities and analyze repository metrics to prioritize open source security research targets

RuboCop extension focused on higher-level concepts, like checking that code reads from top to bottom

Corax for Java: A general static analysis framework for java code checking.

A toolchain for web projects, aimed to provide functionalities to maintain them. Biome offers formatter and linter, usable via CLI and LSP.

An extremely fast Python linter and code formatter, written in Rust.

🐶 Automated code review tool integrated with any code analysis tools regardless of programming language

A new version of Soot with a completely overhauled architecture

It's not just a linter that annoys you!

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

🔥 ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint

Bandit is a tool designed to find common security issues in Python code.

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.

⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.

Find and fix problems in your JavaScript code.

Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in your Kubernetes YAML and Charts. Static code analysis for Kuber...

T.J. Watson Libraries for Analysis, with frontends for Java, Android, and JavaScript, and may common static program analyses

An extremely fast Python linter and code formatter, written in Rust.

A toolchain for web projects, aimed to provide functionalities to maintain them. Biome offers formatter and linter, usable via CLI and LSP.

A Python tool to enforce dependencies, using modular architecture 🌎 Open source 🐍 Installable via pip 🔧 Able to be adopted incrementally - ⚡ Implemented with no runtime impact ♾️ Interoperable with...

⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.

🐶 Automated code review tool integrated with any code analysis tools regardless of programming language

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

Find and fix problems in your JavaScript code.

Bandit is a tool designed to find common security issues in Python code.

PHP Static Analysis Tool - discover bugs in your code without running it!

Automatically detect potential vulnerabilities and analyze repository metrics to prioritize open source security research targets

It's not just a linter that annoys you!

A static analyzer for Java, C, C++, and Objective-C

🌟 JavaScript Style Guide, with linter & automatic code fixer

flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.

🔥 ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint

An extensible multilanguage static code analyzer.

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.

Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly confi...

Go security checker

Automatically detect potential vulnerabilities and analyze repository metrics to prioritize open source security research targets

A Python tool to enforce dependencies, using modular architecture 🌎 Open source 🐍 Installable via pip 🔧 Able to be adopted incrementally - ⚡ Implemented with no runtime impact ♾️ Interoperable with...

RuboCop extension focused on higher-level concepts, like checking that code reads from top to bottom

Lint checks to aid with a healthy adoption of Compose

A toolchain for web projects, aimed to provide functionalities to maintain them. Biome offers formatter and linter, usable via CLI and LSP.

An extremely fast Python linter and code formatter, written in Rust.

a FindBugs/SpotBugs plugin for doing static code analysis for java code bases

Corax for Java: A general static analysis framework for java code checking.

Open Source, Language Agnostic Automatic Test Generation + LLM Mutation Testing

Bandit is a tool designed to find common security issues in Python code.

⚙️ Scan your Go, Java, Kotlin, PHP, Python, JavaScript, TypeScript, .NET projects at GitHub with Qodana. This repository contains Qodana for Azure, GitHub, CircleCI and Gradle

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

🐶 Automated code review tool integrated with any code analysis tools regardless of programming language

A new version of Soot with a completely overhauled architecture

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.

It's not just a linter that annoys you!

SonarSource Static Analyzer for JavaScript and TypeScript

T.J. Watson Libraries for Analysis, with frontends for Java, Android, and JavaScript, and may common static program analyses

Automatically detect potential vulnerabilities and analyze repository metrics to prioritize open source security research targets

An extremely fast Python linter and code formatter, written in Rust.

A toolchain for web projects, aimed to provide functionalities to maintain them. Biome offers formatter and linter, usable via CLI and LSP.

Automatically detect potential vulnerabilities and analyze repository metrics to prioritize open source security research targets

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

Find and fix problems in your JavaScript code.

RuboCop extension focused on higher-level concepts, like checking that code reads from top to bottom

PHP Static Analysis Tool - discover bugs in your code without running it!

🐶 Automated code review tool integrated with any code analysis tools regardless of programming language

A Python tool to enforce dependencies, using modular architecture 🌎 Open source 🐍 Installable via pip 🔧 Able to be adopted incrementally - ⚡ Implemented with no runtime impact ♾️ Interoperable with...

⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.

Bandit is a tool designed to find common security issues in Python code.

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

Go security checker

🌟 JavaScript Style Guide, with linter & automatic code fixer

A static analyzer for Java, C, C++, and Objective-C

It's not just a linter that annoys you!

An extensible multilanguage static code analyzer.

flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.

SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.

Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly confi...

Automatically detect potential vulnerabilities and analyze repository metrics to prioritize open source security research targets

Empower Your Code Quality with Self-Hosted Automated Analysis and Review

TorchFix - a linter for PyTorch-using code with autofix support

A Python tool to enforce dependencies, using modular architecture 🌎 Open source 🐍 Installable via pip 🔧 Able to be adopted incrementally - ⚡ Implemented with no runtime impact ♾️ Interoperable with...

Static analysis framework for C

🔧 JetBrains Qodana’s official command line tool

DeepCode extension for Visual Studio Code

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

A toolchain for web projects, aimed to provide functionalities to maintain them. Biome offers formatter and linter, usable via CLI and LSP.

Static call graph generator. The official Python 3 version. Development repo.

Open Source, Language Agnostic Automatic Test Generation + LLM Mutation Testing

Lint checks to aid with a healthy adoption of Compose

An extremely fast Python linter and code formatter, written in Rust.

Java code commit impact, java code change impact analysis，java代码改动影响范围分析工具，精准测试，回归测试范围划定

NsDepCop is a static code analysis tool that helps to enforce namespace dependency rules in C# projects. No more unplanned or unnoticed dependencies in your system.

A new version of Soot with a completely overhauled architecture

SonarQube plugin with set of rules detecting possible bugs and bad smells specific for AEM development.

Soufflé is a variant of Datalog for tool designers crafting analyses in Horn clauses. Soufflé synthesizes a native parallel C++ program from a logic specification.

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

PHPUnit extensions and rules for PHPStan

A Python tool to enforce dependencies, using modular architecture 🌎 Open source 🐍 Installable via pip 🔧 Able to be adopted incrementally - ⚡ Implemented with no runtime impact ♾️ Interoperable with...

Open Source, Language Agnostic Automatic Test Generation + LLM Mutation Testing

Automatically detect potential vulnerabilities and analyze repository metrics to prioritize open source security research targets

RuboCop extension focused on higher-level concepts, like checking that code reads from top to bottom

Empower Your Code Quality with Self-Hosted Automated Analysis and Review

An extremely fast Python linter and code formatter, written in Rust.

A toolchain for web projects, aimed to provide functionalities to maintain them. Biome offers formatter and linter, usable via CLI and LSP.

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

Find and fix problems in your JavaScript code.

🐶 Automated code review tool integrated with any code analysis tools regardless of programming language

A Python tool to enforce dependencies, using modular architecture 🌎 Open source 🐍 Installable via pip 🔧 Able to be adopted incrementally - ⚡ Implemented with no runtime impact ♾️ Interoperable with...

⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.

Bandit is a tool designed to find common security issues in Python code.

PHP Static Analysis Tool - discover bugs in your code without running it!

Go security checker

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

A static analyzer for Java, C, C++, and Objective-C

🌟 JavaScript Style Guide, with linter & automatic code fixer

Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly confi...

An extensible multilanguage static code analyzer.

It's not just a linter that annoys you!

🔥 ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint

flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.

A static type analyzer for Python code

Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in your Kubernetes YAML and Charts. Static code analysis for Kuber...

TorchFix - a linter for PyTorch-using code with autofix support

Automatically detect potential vulnerabilities and analyze repository metrics to prioritize open source security research targets

🤝 A friendly error formatter extension for PHPStan that provides more readable and informative output, including code snippets and color highlighting.

Performant static analyzer for PHP, which is extremely easy to use. It helps you catch common mistakes in your PHP code.

Java code commit impact, java code change impact analysis，java代码改动影响范围分析工具，精准测试，回归测试范围划定

A toolchain for web projects, aimed to provide functionalities to maintain them. Biome offers formatter and linter, usable via CLI and LSP.

OpenRewrite recipes for identifying and fixing static analysis issues.

A lightweight static security analysis tool for modern Perl Apps

DeepCode extension for Visual Studio Code

An extremely fast Python linter and code formatter, written in Rust.

The official VS Code extension for the RuboCop linter and code formatter.

A new version of Soot with a completely overhauled architecture

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

Corax for Java: A general static analysis framework for java code checking.

Lint checks to aid with a healthy adoption of Compose

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

No description

Static analysis framework for C

SQL language (T-SQL, MySQL, Snowflake, Vertica and PostgreSQL dialects) plugin for SonarQube

count lines of code for hundreds of languages using pygments