There are 66 repositories under static-code-analysis topic.
A Ruby static code analyzer and formatter, based on the community Ruby style guide.
⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.
Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Prevent Kubernetes misconfigurations from reaching production (again 😤 )! From code to production, Datree provides an E2E policy enforcement solution to run automatic checks for rule violations. See our docs: https://hub.datree.io
Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
🐶 Automated code review tool integrated with any code analysis tools regardless of programming language
🔥 ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint
A tool to help eliminate NullPointerExceptions (NPEs) in your Java code with low build-time overhead
SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.
Code Climate CLI
ESLint Config for JavaScript Standard Style
flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.
A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications
A static analysis tool for securing Go code
Manage translation and localization with static analysis, for Ruby i18n
Kubernetes object analysis with recommendations for improved reliability and security
Every programmer needs a rubberduck. COM add-in for the VBA & VB6 IDE (VBE).
A Static Code Analyzer for PHP (a PhpStorm/Idea Plugin)
:coffee: SonarSource Static Analyzer for Java Code Quality and Security
Additional ESLint's rules for Node.js
SonarSource Static Analyzer for JavaScript and TypeScript
Next-gen phpDoc parser with support for intersection types and generics
Vulnerability Patterns Detector for C# and VB.NET
StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.