Shaopeng's repositories
flake8-sarif
SARIF formatter for Flake8 output
AttackSurfaceAnalyzer
Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.
credo
A static code analysis tool for the Elixir language with a focus on code consistency and teaching.
elfsharp
Pure managed C# library for reading ELF, UImage, Mach-O binaries.
flake8
flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.
go-sarif
Go library for sarif - Static Analysis Results Interchange Format
hadolint
Dockerfile linter, validate inline bash, written in Haskell
heimdall_tools
A set of utilities for converting and working with compliance data for viewing in the heimdall applications
HTMLHint
⚙️ The static code analysis tool you need for your HTML
IronRe2
.NET Bindings to the Google Re2 library
IronRe2-Batteries
Native Code NuGet Packages for RE2
lintr
Static Code Analysis for R
node-sarif-builder
SDK library to help building SARIF log files
phpmd
PHPMD is a spin-off project of PHP Depend and aims to be a PHP equivalent of the well known Java tool PMD. PHPMD can be seen as an user friendly frontend application for the raw metrics stream measured by PHP Depend.
puppet-lint
Check that your Puppet manifests conform to the style guide
pycodestyle
Simple Python style checker in one Python file
runner-images
GitHub Actions runner images
sarif-js-sdk
JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs/sarif-spec)
sarif-vscode-extension
SARIF Microsoft Visual Studio Code extension
speccy
Well Spectually 🤓 Enforce quality rules on your OpenAPI 3.0.x specifications.
starter-workflows
Accelerating new GitHub Actions workflows
template-analyzer
ARM Template scanner for security misconfiguration and best practices
terrascan
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.