Awesome Open Source

Programming Languages

Search results for static analysis

static-analysis x

1,078 search results found

[LLVM Static Slicer] Various program analyses, construction of dependence graphs and program slicing of LLVM bitcode.

Jspecify ⭐ 375

An artifact of fully-specified annotations to power static-analysis checks, beginning with nullness analysis.

Automatically generates FORtran Documentation from comments within the code.

Datalog compiler embedded in Rust as a procedural macro

WEB SERVICE SECURITY ASSESSMENT TOOL

Sonar Php ⭐ 365

🐘 SonarPHP: PHP static analyzer for SonarQube & SonarLint

Detect non-inclusive language in your source code.

Chronos ⭐ 362

Chronos - A static race detector for the go language

Phpdeprecationdetector ⭐ 360

Analyzer of PHP code to search issues with deprecated functionality in newer interpreter versions.

Lightweight static analyzer for several programming languages

Clang Tools Extra ⭐ 355

Mirror kept for legacy. Moved to https://github.com/llvm/llvm-project

Modernizer Maven Plugin ⭐ 351

Detect uses of legacy Java APIs

Component Detection ⭐ 348

Scans your project to determine what components you use

Clangkit ⭐ 342

ClangKit provides an Objective-C frontend to LibClang. Source tokenization, diagnostics and fix-its are actually implemented.

Joint Advanced Defect assEsment for android applications

Luacheck ⭐ 326

A tool for linting and static analysis of Lua code.

Phpstan Deprecation Rules ⭐ 325

PHPStan rules for detecting usage of deprecated classes, methods, properties, constants and traits.

Soottutorial ⭐ 324

A step-by-step tutorial for Soot (a Java static analysis framework)

Warnings Ng Plugin ⭐ 324

Jenkins Warnings Plugin - Next Generation

Drupal Check ⭐ 323

Check Drupal code for deprecations and discover bugs via static analysis

Refactorfirst ⭐ 322

Identifies and prioritizes God Classes and Highly Coupled classes in Java codebases you should refactor first.

Pycharm Security ⭐ 321

Finds security holes in your Python projects from PyCharm and GitHub

Njsscan ⭐ 318

njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.

Code metrics for Java code by means of static analysis

Slitherin ⭐ 313

Slither Detectors by Pessimistic.io

Compose Lints ⭐ 313

Lint checks to aid with a healthy adoption of Compose

the online javascript package explorer

Forbidden Apis ⭐ 306

Policeman's Forbidden API Checker

Dingo Hunter ⭐ 305

Static analyser for finding Deadlocks in Go

Ida Minsc ⭐ 304

A plugin based on IDAPython for a functional DWIM interface. This allows one to script w/o documentation, as many commands can infer their parameters from what you currently have selected. Ongoing development is currently in the "persistence-refactor" branch. Use "Wiki" or "Discussions" for examples, and smash that "Star" button if you like this.

Rsense Can See All

An open source script to perform malware static analysis on Portable Executable

Vulny Code Static Analysis ⭐ 301

Python script to detect vulnerabilities inside PHP source code using static analysis, based on regex

Quality Police for Java projects: aggregator of Checkstyle and PMD

Awesome Java Security ⭐ 291

Awesome Java Security Resources 🕶☕🔐

A scanner for deprecated and end-of-life (EOL) software in container images, filesystems, and SBOMs

Bytecodedl ⭐ 289

A declarative static analysis tool for jvm bytecode based Datalog like CodeQL

Wyvern V3 ⭐ 288

Wyvern Protocol v3.1, Ethereum implementation

Bodyclose ⭐ 284

Analyzer: checks whether HTTP response body is closed and a re-use of TCP connection is not blocked.

Pluggable TypeScript and JavaScript linter

Protoc Gen Lint ⭐ 282

A plug-in for Google's Protocol Buffers (protobufs) compiler to lint .proto files for style violations.

Dlint is a tool for encouraging best coding practices and helping ensure we're writing secure Python code.

Pyanalyze ⭐ 278

A Python type checker

A digital wellbeing Android app that helps minimise distractions when you don't want them. Watch us live code it at https://cwti.link/twitch or catch up on YouTube at https://cwti.link/yt. Merch available at https://cwti.link/spaccio.

Static Analysis Compiler Plugin for Scala

Static Python call graph generator

Gitleaks Action ⭐ 267

Protect your secrets using Gitleaks-Action

Libscout ⭐ 267

LibScout: Third-party library detector for Java/Android apps

Psalm Plugin Laravel ⭐ 267

A Psalm plugin for Laravel

Codecat ⭐ 264

CodeCat is an open-source tool to help you find/track user input sinks and security bugs using static code analysis. These points follow regex rules. Beta version.

Collector ⭐ 262

A framework for Static Analysis of Docker container images

Cleancppproject ⭐ 261

Clean C++ project for you to use. Features: Modern CMake, CPack, Doxygen, PlantUML, Catch Unit testing, static analysis

Bellybutton ⭐ 259

Custom Python linting through AST expressions

Sbt Dependency Check ⭐ 259

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈

Static Analyzer for LLVM bitcode based on Abstract Interpretation

Lazytrivy ⭐ 258

Vulnerability scanning just got lazier

Insider ⭐ 255

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

Skidsuite ⭐ 249

A collection of java reverse engineering tools and informational links

Scalpel ⭐ 242

Scalpel: The Python Static Analysis Framework

Phpstan Dba ⭐ 240

PHPStan based SQL static analysis and type inference for the database access layer

D Scanner ⭐ 236

Swiss-army knife for D source code

Cerberus ⭐ 235

A C++ tool to unstrip Rust/Go binaries (ELF and PE)

Nju Software Analysis Homework ⭐ 233

南京大学《软件分析》课程课后作业(非Bamboo) NJU's software analysis homework; ... Not official, just a reference

Qodana Action ⭐ 232

⚙️ Scan your Go, Java, Kotlin, PHP, Python, JavaScript, TypeScript, .NET projects at GitHub with Qodana. This repository contains Qodana for Azure, GitHub, CircleCI and Gradle

Phpstan Wordpress ⭐ 229

WordPress extensions for PHPStan ⛏️

Codewarrior ⭐ 229

code-searching tool and static code analysis - Beta

GitHub项目监控 && CodeQL自动扫描 (GitHub project monitoring && CodeQL automatic analysis)

PyTea: PyTorch Tensor shape error analyzer

Rstcheck ⭐ 214

Checks syntax of reStructuredText and code blocks nested within it

Securify2 ⭐ 208

Cpachecker ⭐ 204

CPAchecker, the Configurable Software-Verification Platform (read-only mirror)

Regal is a linter for Rego, with the goal of making your Rego magnificent!

Abaplint ⭐ 201

Standalone static analysis for ABAP

Automatic test case generation for python and static analysis library

A library for building abstract interpretation-based analyses

Sleighcraft ⭐ 198

Hosted and command-line calculator of cohesion metrics for Java code

A parser and static source code analyzer for PL/SQL and Oracle SQL.

Gradle Pitest Plugin ⭐ 190

Gradle plugin for PIT Mutation Testing

Checkov Action ⭐ 188

This GitHub Action runs Checkov against infrastructure-as-code, open source packages, container images, and CI/CD configurations to identify misconfigurations, vulnerabilities, and license compliance issues.

Slack Lints ⭐ 188

A collection of custom Android/Kotlin lint checks we use in our Android and Kotlin code bases at Slack.

Excellent_migrations ⭐ 187

An Elixir tool for checking safety of database migrations.

Phpstan Disallowed Calls ⭐ 185

PHPStan rules to detect disallowed method & function calls, constant, namespace, attribute & superglobal usages

Functional ⭐ 184

PHP Functional Programming library. Monads, common use functions and generic collections.

Sonar Swift ⭐ 182

sonar-swift.SonarQube iOS Plugin, Support Objective-C/Swift/Java, Support import Infer Issue (SonarQube iOS 代码扫描插件，支持 Objective-C 和 Swift / Java，支持 Infer 结果导入 ) base on https://github.com/Idean/sonar-swift

Php Cs Fixer Custom Fixers ⭐ 182

A set of custom fixers for PHP CS Fixer

Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code

Phpstan Drupal ⭐ 182

Extension for PHPStan to allow analysis of Drupal code.

Find similar functions and classes in your JavaScript/TypeScript code

Personal_script ⭐ 179

Less than half of mastodon.

Route Detect ⭐ 178

Find authentication (authn) and authorization (authz) security bugs in web application routes.

Malwarelab_vm Setup ⭐ 178

Setup scripts for my Malware Analysis VMs

OPEM (Open Source PEM Fuel Cell Simulation Tool)

H(igh) A(ssurance) ROS - Static analysis of ROS application code.

Static code analysis for CFML (a linter)

Phantom Types ⭐ 171

Phantom types for Python.

Perl Critic ⭐ 169

The leading static analyzer for Perl. Configurable, extensible, powerful.

Parser for Angular projects.

Securify ⭐ 168

[DEPRECATED] Security Scanner for Ethereum Smart Contracts

201-300 of 1,078 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.