There are 74 repositories under static-code-analysis topic.
A Ruby static code analyzer and formatter, based on the community Ruby style guide.
An extremely fast Python linter, written in Rust.
⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
Prevent Kubernetes misconfigurations from reaching production (again 😤 )! From code to cloud, Datree provides an E2E policy enforcement solution to run automatic checks for rule violations. See our docs: https://hub.datree.io
🐶 Automated code review tool integrated with any code analysis tools regardless of programming language
Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
It's not just a linter that annoys you!
🔥 ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint
A tool to help eliminate NullPointerExceptions (NPEs) in your Java code with low build-time overhead
SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.
flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.
ESLint Config for JavaScript Standard Style
Code Climate CLI
Kubernetes object analysis with recommendations for improved reliability and security
A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications
A static analysis tool for securing Go code
Manage translation and localization with static analysis, for Ruby i18n
🐬 A simplified implementation of TypeScript's type system written in TypeScript's type system
Every programmer needs a rubberduck. COM add-in for the VBA & VB6 IDE (VBE).
A Static Code Analyzer for PHP (a PhpStorm/Idea Plugin)
Static checks to aid with a healthy adoption of Compose
:coffee: SonarSource Static Analyzer for Java Code Quality and Security
Next-gen phpDoc parser with support for intersection types and generics
Code security scanning tool (SAST) that discover, filter and prioritize security risks and vulnerabilities leading to sensitive data exposures (PII, PHI, PD).