Awesome Open Source
Awesome Open Source
Combined Topics
static-code-analysis x

The Top 308 Static Code Analysis Open Source Projects

Categories > Software Quality > Static Code Analysis
Standard ⭐ 27,464
🌟 JavaScript Style Guide, with linter & automatic code fixer
dependent packages 28,877total releases 180most recent commit 4 days agonpm standard} Downloads
Eslint ⭐ 21,330
Find and fix problems in your JavaScript code.
dependent packages 336,915total releases 312most recent commit a day agonpm eslint} Downloads
Infer ⭐ 13,522
A static analyzer for Java, C, C++, and Objective-C
dependent packages 7total releases 8most recent commit 2 days ago
Rubocop ⭐ 11,990
A Ruby static code analyzer and formatter, based on the community Ruby style guide.
dependent packages 11,715total releases 217most recent commit a day agorubygems rubocop} Downloads
Phpstan ⭐ 11,330
PHP Static Analysis Tool - discover bugs in your code without running it!
dependent packages 7,337total releases 221most recent commit 2 days agopackagist phpstan/phpstan} Downloads
Static Analysis ⭐ 10,286
⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.
most recent commit a day ago
Checkstyle ⭐ 7,292
Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
dependent packages 114total releases 115most recent commit 15 hours ago
Semgrep ⭐ 7,118
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
dependent packages 4total releases 133most recent commit 16 hours agopypi semgrep} Downloads
Gosec ⭐ 6,345
Golang security checker
dependent packages 308total releases 108most recent commit 3 days ago
Datree ⭐ 5,917
Prevent Kubernetes misconfigurations from reaching production (again 😤 )! From code to cloud, Datree provides an E2E policy enforcement solution to run automatic checks for rule violations. See our docs: https://hub.datree.io
total releases 108most recent commit 21 hours ago
Reviewdog ⭐ 5,558
🐶 Automated code review tool integrated with any code analysis tools regardless of programming language
dependent packages 23total releases 154most recent commit 2 days ago
Phan ⭐ 5,316
Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
dependent packages 434total releases 177most recent commit a day agopackagist phan/phan} Downloads
Bandit ⭐ 4,459
Bandit is a tool designed to find common security issues in Python code.
total releases 9most recent commit 12 days ago
Pylint ⭐ 4,238
It's not just a linter that annoys you!
dependent packages 2,413total releases 153most recent commit a day agopypi pylint} Downloads
Pmd ⭐ 4,000
An extensible multilanguage static code analyzer.
dependent packages 32total releases 82most recent commit a day ago
Pytype ⭐ 3,914
A static type analyzer for Python code
dependent packages 57total releases 142most recent commit 2 days agopypi pytype} Downloads
Revive ⭐ 3,782
🔥 ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint
dependent packages 209total releases 97most recent commit 16 days ago
Nullaway ⭐ 3,171
A tool to help eliminate NullPointerExceptions (NPEs) in your Java code with low build-time overhead
dependent packages 11total releases 61most recent commit 3 days ago
Spotbugs ⭐ 2,844
SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.
dependent packages 404total releases 54most recent commit 2 days ago
Codelyzer ⭐ 2,436
Static analysis for Angular projects.
dependent packages 14,992total releases 77most recent commit 6 months agonpm codelyzer} Downloads
Eslint Config Standard ⭐ 2,350
ESLint Config for JavaScript Standard Style
dependent packages 37,538total releases 81most recent commit 25 days agonpm eslint-config-standard} Downloads
Codeclimate ⭐ 2,341
Code Climate CLI
dependent packages 4total releases 237most recent commit 18 days agorubygems codeclimate} Downloads
Flake8 ⭐ 2,311
flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.
dependent packages 4,873total releases 81most recent commit 3 days agopypi flake8} Downloads
Gokart ⭐ 2,022
A static analysis tool for securing Go code
dependent packages 2total releases 8most recent commit 4 days ago
Pyt ⭐ 2,005
A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications
dependent packages 1total releases 15most recent commit 2 years agopypi python-taint} Downloads
Ruff ⭐ 1,938
An extremely fast Python linter, written in Rust.
most recent commit 2 days ago
Kube Score ⭐ 1,913
Kubernetes object analysis with recommendations for improved reliability and security
total releases 38most recent commit 4 days ago
I18n Tasks ⭐ 1,821
Manage translation and localization with static analysis, for Ruby i18n
dependent packages 39total releases 142most recent commit 8 days agorubygems i18n-tasks} Downloads
Rubberduck ⭐ 1,635
Every programmer needs a rubberduck. COM add-in for the VBA & VB6 IDE (VBE).
most recent commit a month ago
Tscancode ⭐ 1,512
A static code analyzer for C++, C#, Lua
most recent commit 21 days ago
Phpinspectionsea ⭐ 1,301
A Static Code Analyzer for PHP (a PhpStorm/Idea Plugin)
most recent commit 7 months ago
Sonar Java ⭐ 945
☕️ SonarSource Static Analyzer for Java Code Quality and Security
dependent packages 42total releases 53most recent commit 13 days ago
Compose Rules ⭐ 939
Static checks to aid with a healthy adoption of Compose
most recent commit 2 days ago
Sonarjs ⭐ 854
SonarSource Static Analyzer for JavaScript and TypeScript
dependent packages 15total releases 59most recent commit 3 days ago
Phpdoc Parser ⭐ 852
Next-gen phpDoc parser with support for intersection types and generics
dependent packages 52total releases 48most recent commit 19 days agopackagist phpstan/phpdoc-parser} Downloads
Eslint Plugin Node ⭐ 815
Additional ESLint's rules for Node.js
dependent packages 42,230total releases 60most recent commit 10 months agonpm eslint-plugin-node} Downloads
Security Code Scan ⭐ 786
Vulnerability Patterns Detector for C# and VB.NET
most recent commit 21 days ago
Stacoan ⭐ 719
StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.
most recent commit a year ago
Scalastyle ⭐ 657
scalastyle
dependent packages 8total releases 10most recent commit 3 years ago
Phpcs Security Audit ⭐ 636
phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code
dependent packages 20total releases 5most recent commit 22 days agopackagist pheromone/phpcs-security-audit} Downloads
Rubocop Rails ⭐ 629
A RuboCop extension focused on enforcing Rails best practices and coding conventions.
dependent packages 380total releases 63most recent commit 21 hours agorubygems rubocop-rails} Downloads
Jackhammer ⭐ 599
Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
most recent commit 3 years ago
Souffle ⭐ 593
Soufflé is a variant of Datalog for tool designers crafting analyses in Horn clauses. Soufflé synthesizes a native parallel C++ program from a logic specification.
most recent commit 2 months ago
Wala ⭐ 574
T.J. Watson Libraries for Analysis, with frontends for Java, Android, and JavaScript, and may common static program analyses
dependent packages 15total releases 16most recent commit 5 days ago
Sonar Dotnet ⭐ 571
Code analyzer for C# and VB.NET projects https://redirect.sonarsource.com/plugins/vbnet.htm
dependent packages 12total releases 76most recent commit 3 days ago
Hypescript ⭐ 568
🐬 A simplified implementation of TypeScript's type system written in TypeScript's own type system
most recent commit 2 months ago
Pep8speaks ⭐ 566
A GitHub app to automatically review Python code style over Pull Requests
most recent commit 2 days ago
Phpstan Symfony ⭐ 525
Symfony extension for PHPStan
dependent packages 299total releases 77most recent commit a month agopackagist phpstan/phpstan-symfony} Downloads
Rubocop Performance ⭐ 492
An extension of RuboCop focused on code performance checks.
dependent packages 1,210total releases 38most recent commit 2 days agorubygems rubocop-performance} Downloads
Php Parser ⭐ 462
🌿 NodeJS PHP Parser - extract AST or tokens
dependent packages 62total releases 68most recent commit 13 days agonpm php-parser} Downloads
Phpstan Doctrine ⭐ 449
Doctrine extensions for PHPStan
dependent packages 365total releases 89most recent commit 4 days agopackagist phpstan/phpstan-doctrine} Downloads
Prealloc ⭐ 436
prealloc is a Go static analysis tool to find slice declarations that could potentially be preallocated.
dependent packages 81total releases 2most recent commit a year ago
Eslint Config Standard React ⭐ 429
ESLint Shareable Config for React/JSX support in JavaScript Standard Style
dependent packages 8,576total releases 35most recent commit 7 months agonpm eslint-config-standard-react} Downloads
Phpstan Strict Rules ⭐ 412
Extra strict and opinionated rules for PHPStan
dependent packages 1,189total releases 24most recent commit 3 days agopackagist phpstan/phpstan-strict-rules} Downloads
Kotlin Modular Tdd Coroutines Mvvm ⭐ 408
A sample Kotlin app which was built with modular structure, Kotlin DSL, Kotlin Coroutines, TDD and MVVM patterns.
most recent commit 6 months ago
Engine ⭐ 398
Droidefense: Advance Android Malware Analysis Framework
most recent commit a year ago
Putout ⭐ 365
🐊 Pluggable and configurable JavaScript Linter and code transformer with built-in ESLint and Babel support for js, jsx typescript, flow, markdown, yaml and json. Write declarative codemods in a simplest possible way 😏
dependent packages 257total releases 195most recent commit 3 days agonpm eslint-plugin-putout} Downloads
Chronos ⭐ 362
Chronos - A static race detector for the go language
most recent commit 5 months ago
Qodana ⭐ 356
📝 Source repository of Qodana Help
most recent commit 9 days ago
Phpstan Phpunit ⭐ 342
PHPUnit extensions and rules for PHPStan
dependent packages 1,223total releases 35most recent commit 2 months agopackagist phpstan/phpstan-phpunit} Downloads
Vue Eslint Parser ⭐ 339
The ESLint custom parser for `.vue` files.
dependent packages 800total releases 74most recent commit 17 days agonpm vue-eslint-parser} Downloads
Sonar Php ⭐ 333
🐘 SonarPHP: PHP static analyzer for SonarQube & SonarLint
dependent packages 12total releases 39most recent commit 7 days ago
Sharpen ⭐ 327
Visual Studio extension that intelligently introduces new C# features into your existing codebase
most recent commit 2 years ago
Dg ⭐ 323
[LLVM Static Slicer] Various program analyses, construction of dependence graphs and program slicing of LLVM bitcode.
most recent commit 4 months ago
Warnings Ng Plugin ⭐ 310
Jenkins Warnings Plugin - Next Generation
most recent commit 3 days ago
Tryceratops ⭐ 308
A linter to prevent exception handling antipatterns in Python (limited only for those who like dinosaurs).
dependent packages 2total releases 26most recent commit 2 months agopypi tryceratops} Downloads
Awesome Standard ⭐ 302
Documenting the explosion of packages in the standard ecosystem!
dependent packages 1total releases 3most recent commit a year agonpm awesome-standard} Downloads
Betterscan Ce ⭐ 295
Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan Community Edition (CE)
most recent commit 3 days ago
Eslint Plugin Markdown ⭐ 284
Lint JavaScript code blocks in Markdown documents
dependent packages 2,083total releases 22most recent commit 2 months agonpm eslint-plugin-markdown} Downloads
Forbidden Apis ⭐ 267
Policeman's Forbidden API Checker
dependent packages 9total releases 26most recent commit 21 hours ago
Progpilot ⭐ 264
A static analysis tool for security
dependent packages 1total releases 8most recent commit 4 months agopackagist designsecurity/progpilot} Downloads
Theme Check ⭐ 263
The Ultimate Shopify Theme Linter
dependent packages 1total releases 47most recent commit a month agorubygems theme-check} Downloads
Codecat ⭐ 240
CodeCat is an open-source tool to help you find/track user input sinks and security bugs using static code analysis. These points follow regex rules.
most recent commit 3 months ago
Phpstan Deprecation Rules ⭐ 230
PHPStan rules for detecting usage of deprecated classes, methods, properties, constants and traits.
dependent packages 467total releases 13most recent commit 2 months agopackagist phpstan/phpstan-deprecation-rules} Downloads
Tombstone ⭐ 215
Dead code detection with tombstones for PHP 🪦🧟
dependent packages 1total releases 31most recent commit 12 days agopackagist scheb/tombstone} Downloads
Elm Review ⭐ 200
Analyzes Elm projects, to help find mistakes before your users find them.
dependent packages 62total releases 34most recent commit 2 days ago
Klara ⭐ 199
Automatic test case generation for python and static analysis library
total releases 4most recent commit a year ago
Wpbullet ⭐ 196
A static code analysis for WordPress (and PHP)
most recent commit 14 days ago
Sputnik ⭐ 195
Static code review for your Gerrit patchsets. Runs Checkstyle, PMD, FindBugs, Scalastyle, CodeNarc, JSLint for you!
dependent packages 2total releases 29most recent commit 2 months ago
Sonar Pmd ⭐ 187
☕️ PMD Plugin for SonarQube
dependent packages 1total releases 18most recent commit 2 months ago
Tip ⭐ 173
Static program analysis for TIP
most recent commit 10 months ago
Unimport ⭐ 171
A linter, formatter for finding and removing unused import statements.
total releases 40most recent commit 2 days ago
Coveragechecker ⭐ 169
Allows old code to use new standards
dependent packages 3total releases 37most recent commit a month agopackagist exussum12/coverage-checker} Downloads
Zpa ⭐ 164
A parser and static source code analyzer for PL/SQL and Oracle SQL.
total releases 3most recent commit 3 months ago
Abaplint ⭐ 162
Standalone static analysis for ABAP
dependent packages 5total releases 659most recent commit 21 hours agonpm @abaplint/core} Downloads
Cflint ⭐ 160
Static code analysis for CFML (a linter)
total releases 26most recent commit a year ago
Perl Critic ⭐ 158
The leading static analyzer for Perl. Configurable, extensible, powerful.
most recent commit 17 days ago
Walkmod Core ⭐ 151
walkmod: an open source tool to fix coding style issues
dependent packages 20total releases 28most recent commit 2 years ago
Bento ⭐ 146
[DEPRECATED] Find Python web-app bugs delightfully fast, without changing your workflow. 🍱
total releases 83most recent commit a year ago
Rubocop Graphql ⭐ 143
Rubocop extension for enforcing graphql-ruby best practices
dependent packages 6total releases 37most recent commit a month agorubygems rubocop-graphql} Downloads
Qodana Action ⭐ 143
⚙️ Scan your Java, Kotlin, PHP, Python, JavaScript, TypeScript projects at GitHub with Qodana. This repository contains Qodana for Azure, GitHub and CircleCI
most recent commit 2 months ago
Nsdepcop ⭐ 136
NsDepCop is a static code analysis tool that helps to enforce namespace dependency rules in C# projects. No more unplanned or unnoticed dependencies in your system.
total releases 38most recent commit 8 days ago
Phpstan Webmozart Assert ⭐ 131
PHPStan extension for webmozart/assert
dependent packages 280total releases 37most recent commit 5 days agopackagist phpstan/phpstan-webmozart-assert} Downloads
Fb Contrib ⭐ 128
a FindBugs/SpotBugs plugin for doing static code analysis for java code bases
dependent packages 10total releases 54most recent commit a year ago
Pfun ⭐ 127
Functional, composable, asynchronous, type-safe Python.
most recent commit 3 months ago
Owasp Orizon ⭐ 127
Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
most recent commit 6 years ago
Tajs ⭐ 126
Type Analyzer for JavaScript
most recent commit 2 years ago
Fastlint Issues ⭐ 124
FastLint finds & fixes bugs in your commits
most recent commit 2 years ago
Violations Lib ⭐ 122
Java library for parsing report files from static code analysis.
dependent packages 7total releases 156most recent commit 2 days ago
Codecharta ⭐ 118
CodeCharta visualizes multiple code metrics using 3D tree maps.
total releases 144most recent commit 2 days ago
1-100 of 308 projects
Categories
Advertising 📦 8
All Projects
Application Programming Interfaces 📦 107
Applications 📦 174
Artificial Intelligence 📦 69
Blockchain 📦 66
Build Tools 📦 105
Cloud Computing 📦 68
Code Quality 📦 24
Collaboration 📦 27
Command Line Interface 📦 38
Community 📦 79
Companies 📦 60
Compilers 📦 59
Computer Science 📦 73
Configuration Management 📦 37
Content Management 📦 153
Control Flow 📦 187
Data Formats 📦 72
Data Processing 📦 249
Data Storage 📦 116
Economics 📦 56
Frameworks 📦 178
Games 📦 110
Graphics 📦 92
Hardware 📦 137
Integrated Development Environments 📦 43
Learning Resources 📦 139
Legal 📦 24
Libraries 📦 117
Lists Of Projects 📦 19
Machine Learning 📦 313
Mapping 📦 57
Marketing 📦 15
Mathematics 📦 54
Media 📦 214
Messaging 📦 96
Networking 📦 292
Operating Systems 📦 72
Operations 📦 114
Package Managers 📦 50
Programming Languages 📦 173
Runtime Environments 📦 90
Science 📦 42
Security 📦 342
Social Media 📦 23
Software Architecture 📦 65
Software Development 📦 60
Software Performance 📦 53
Software Quality 📦 116
Text Editors 📦 40
Text Processing 📦 118
User Interface 📦 291
User Interface Components 📦 440
Version Control 📦 26
Virtualization 📦 63
Web Browsers 📦 35
Web Servers 📦 23
Web User Interface 📦 167
Top Programming Languages
Javascript  (1,090,060)
Python  (836,862)
Java  (396,315)
Php  (289,821)
Typescript  (266,127)
C Plus Plus  (245,644)
Ruby  (222,621)
C  (186,064)
Shell  (175,562)
C Sharp  (169,379)
Golang  (163,592)
Swift  (66,730)
Rust  (61,591)
R  (59,598)
Objective C  (57,116)
Dart  (56,061)
Kotlin  (49,101)
Lua  (35,607)
Matlab  (31,776)
Perl  (30,633)
Language  (29,988)
Scala  (28,906)
Haskell  (20,613)
Powershell  (19,524)
Clojure  (19,265)
Bash  (18,860)
Coffeescript  (17,224)
Elixir  (16,943)
Assembly  (15,003)
Processing  (13,286)
Julia  (13,275)
Basic  (10,702)
Emacs Lisp  (10,558)
Flow  (10,532)
Erlang  (9,072)
Solidity  (8,893)
Groovy  (8,490)
Scheme  (8,419)
Ocaml  (6,797)
Pascal  (6,570)
Hack  (6,461)
Lisp  (6,345)
Fortran  (5,644)
Elm  (5,505)
Common Lisp  (5,379)
Dlang  (4,763)
Shell Script  (4,727)
Python Library  (4,474)
Crystal  (4,402)
Scripting  (4,218)
Top Projects
Freecodecamp ⭐ 353,860
996.icu ⭐ 263,876
Free Programming Books ⭐ 249,820
Coding Interview University ⭐ 234,090
Awesome ⭐ 220,672
Developer Roadmap ⭐ 212,635
Public Apis ⭐ 209,615
Vue ⭐ 199,611
System Design Primer ⭐ 197,601
React ⭐ 195,230
Tensorflow ⭐ 167,934
Build Your Own X ⭐ 165,260
Bootstrap ⭐ 159,657
You Dont Know Js ⭐ 159,180
Cs Notes ⭐ 156,901
Javascript Algorithms ⭐ 151,359
Ohmyzsh ⭐ 150,386
Python ⭐ 145,251
Flutter ⭐ 145,242
Awesome Python ⭐ 142,001
Gitignore ⭐ 138,733
Linux ⭐ 138,490
Vscode ⭐ 136,934
Javaguide ⭐ 127,508
Javascript ⭐ 127,377
Computer Science ⭐ 123,917
Python 100 Days ⭐ 123,512
Youtube Dl ⭐ 113,542
Fucking Algorithm ⭐ 110,396
The Art Of Command Line ⭐ 109,914
React Native ⭐ 105,024
Go ⭐ 104,049
Awesome Selfhosted ⭐ 103,828
Electron ⭐ 103,793
30 Seconds Of Code ⭐ 102,805
D3 ⭐ 101,796
Create React App ⭐ 97,104
Axios ⭐ 95,834
Free Programming Books Zh_cn ⭐ 94,901
Next.js ⭐ 93,062
Kubernetes ⭐ 92,328
Node ⭐ 90,542
Awesome Go ⭐ 88,320
Three.js ⭐ 85,553
Deno ⭐ 85,410
Terminal ⭐ 85,389
Typescript ⭐ 84,486
Angular ⭐ 84,020
Ant Design ⭐ 81,977
Nodebestpractices ⭐ 81,676
Privacy | About | Terms | Follow Us On Twitter

Downloads, Dependent Repos, Dependent Packages, Total Releases, Latest Releases data powered by Libraries.io.

Copyright 2018-2022 Awesome Open Source.  All rights reserved.