Projects in Awesome Lists tagged with static-analysis

https://github.com/staabm/phpstan-dba

PHPStan based SQL static analysis and type inference for the database access layer

hacktoberfest php phpstan phpstan-extension query-validation static-analysis type-inference

Last synced: 17 Jan 2025

https://github.com/albuch/sbt-dependency-check

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). :rainbow:

appsec cve devops devsecops infosec nvd owasp owasp-dependencycheck sbt sbt-plugin scala security security-audit security-automation software-composition-analysis software-security static-analysis vulnerabilities vulnerability-scanners

Last synced: 21 Nov 2024

https://github.com/usagitoneko97/klara

Automatic test case generation for python and static analysis library

ast cfg python ssa static-analysis static-code-analysis

Last synced: 31 Oct 2024

https://github.com/carthage-software/mago

Mago is a toolchain for PHP that aims to provide a set of tools to help developers write better code.

code-analyzer code-style coding-standards formatter lexer linter parser php static-analysis type-checker

Last synced: 18 Jan 2025

https://github.com/moabukar/cks-exercises-certified-kubernetes-security-specialist

A set of curated exercises to help you prepare for the CKS exam

anchore apparmor audit-log cks containerd containers falco gvisor kube-bench kubernetes networkpolicies opa seccomp secrets-management security security-tools static-analysis sysdig trivy

Last synced: 16 Jan 2025

https://github.com/artur-sulej/excellent_migrations

An Elixir tool for checking safety of database migrations.

ast code-analysis credo ecto elixir migrations static-analysis

Last synced: 17 Jan 2025

https://github.com/bridgecrewio/checkov-action

This GitHub Action runs Checkov against infrastructure-as-code, open source packages, container images, and CI/CD configurations to identify misconfigurations, vulnerabilities, and license compliance issues.

bridgecrew compliance devsecops hacktoberfest marketplace scanning security static-analysis terraform

Last synced: 17 Jan 2025

https://github.com/dlang-community/D-Scanner

Swiss-army knife for D source code

ctags dlang lint linter static-analysis syntax-checker

Last synced: 18 Nov 2024

https://github.com/Artur-Sulej/excellent_migrations

An Elixir tool for checking safety of database migrations.

ast code-analysis credo ecto elixir migrations static-analysis

Last synced: 04 Nov 2024

https://github.com/seahorn/crab

A library for building abstract interpretation-based analyses

abstract-interpretation invariants program-analysis static-analysis verification

Last synced: 15 Jan 2025

https://github.com/slackhq/slack-lints

A collection of custom Android/Kotlin lint checks we use in our Android and Kotlin code bases at Slack.

android android-lint kotlin lint static-analysis

Last synced: 17 Jan 2025

https://github.com/owenrumney/squealer

Telling tales on you for leaking secrets!

aws code-scanning devsecops git-tool go golang hacktoberfest leak-detection leaking-secrets sarif-report secrets security security-tools static-analysis

Last synced: 17 Jan 2025

https://github.com/mschwager/route-detect

Find authentication (authn) and authorization (authz) security bugs in web application routes.

authentication authorization http-server routes security static-analysis

Last synced: 20 Jan 2025

https://github.com/abaplint/abaplint

Standalone static analysis for ABAP

abap abaplint code-quality-analyzer hacktoberfest linter static-analysis static-code-analysis

Last synced: 17 Jan 2025

https://github.com/plsyssec/sys

Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code

bug-finding security static-analysis symbolic-execution

Last synced: 17 Jan 2025

https://github.com/szpak/gradle-pitest-plugin

Gradle plugin for PIT Mutation Testing

code-quality coverage gradle gradle-plugin groovy java mutation-testing pit pitest static-analysis testing

Last synced: 18 Jan 2025

https://github.com/gptlint/gptlint

A linter with superpowers! 🔥 Use LLMs to enforce best practices across your codebase.

best-practices gpt linter llms static-analysis

Last synced: 05 Nov 2024

https://github.com/rstcheck/rstcheck

Checks syntax of reStructuredText and code blocks nested within it

linter python restructuredtext static-analysis

Last synced: 18 Nov 2024

https://github.com/myint/rstcheck

Checks syntax of reStructuredText and code blocks nested within it

linter python restructuredtext static-analysis

Last synced: 27 Oct 2024

https://github.com/tintinweb/ethereum-dasm

An ethereum evm bytecode disassembler and static/dynamic analysis tool

blockchain disassembler dynamic-analysis ethereum evm static-analysis

Last synced: 18 Jan 2025

https://github.com/StyraInc/regal

Regal is a linter for Rego, with the goal of making your Rego magnificent!

code-quality language-server lint linter linters lsp magnificent opa open-policy-agent policy-as-code rego static-analysis

Last synced: 17 Nov 2024

https://github.com/kubawerlos/php-cs-fixer-custom-fixers

A set of custom fixers for PHP CS Fixer

code-standards code-style php php-cs-fixer static-analysis

Last synced: 17 Jan 2025

https://github.com/eth-sri/securify

[DEPRECATED] Security Scanner for Ethereum Smart Contracts

chainsecurity datalog depricated ethereum evm obsolete security smart-contract solidity static-analysis

Last synced: 15 Nov 2024

https://github.com/felipebz/zpa

Parser and static code analysis tool for PL/SQL and Oracle SQL.

analysis code-analysis code-quality grammar oracle-forms oracle-sql parser plsql plsql-analyzer plsql-parser sonarqube sql-analyzer static-analysis static-code-analysis

Last synced: 26 Oct 2024

https://github.com/spaze/phpstan-disallowed-calls

PHPStan rules to detect disallowed method & function calls, constant, namespace, attribute & superglobal usages

disallowed-calls php phpstan phpstan-rules static-analysis

Last synced: 19 Jan 2025

https://github.com/ecsim/opem

OPEM (Open Source PEM Fuel Cell Simulation Tool)

chemistry dynamic-analysis electrochemistry fuel-cell opem pem physics physics-simulation python script simulation simulator static-analysis static-analyzer

Last synced: 18 Jan 2025

https://github.com/ECSIM/opem

OPEM (Open Source PEM Fuel Cell Simulation Tool)

chemistry dynamic-analysis electrochemistry fuel-cell opem pem physics physics-simulation python script simulation simulator static-analysis static-analyzer

Last synced: 30 Oct 2024

https://github.com/stelligent/config-lint

Command line tool to validate configuration files

config-lint continuous-testing devops hacktoberfest json kubernetes lint open-source static-analysis stelligent terraform yaml

Last synced: 16 Jan 2025

https://github.com/antonagestam/phantom-types

Phantom types for Python.

mypy phantom-types python python3 refined refined-types refinement-types static-analysis static-typing typing validation

Last synced: 29 Oct 2024

https://github.com/enovella/r2frida-wiki

This repo aims at providing practical examples on how to use r2frida

dynamic-analysis frida r2frida radare2 static-analysis

Last synced: 02 Dec 2024

https://github.com/dspinellis/cscout

C code refactoring browser

c c-preprocessor call-graph refactoring static-analysis

Last synced: 18 Jan 2025

https://github.com/picnicsupermarket/error-prone-support

Error Prone extensions: extra bug checkers and a large battery of Refaster rules.

abstract-syntax-tree ast automatic-refactoring code-quality code-style code-transformation error-prone hacktoberfest java refactoring refactoring-tools refaster static-analysis

Last synced: 18 Jan 2025

https://github.com/mglaman/phpstan-drupal

Extension for PHPStan to allow analysis of Drupal code.

drupal hacktoberfest php phpstan static-analysis

Last synced: 16 Jan 2025

https://github.com/PicnicSupermarket/error-prone-support

Error Prone extensions: extra bug checkers and a large battery of Refaster rules.

abstract-syntax-tree ast automatic-refactoring code-quality code-style code-transformation error-prone hacktoberfest java refactoring refactoring-tools refaster static-analysis

Last synced: 08 Nov 2024

https://github.com/tommy-muehle/go-mnd

Magic number detector for Go.

analysis cli code-checker detector go go-vet golang magic-numbers static-analysis

Last synced: 18 Jan 2025

https://github.com/ret42/RE-Thing

Reverse Engineering Tools (deobf, decompiler etc..)

assembly deobfuscator disassembler malware-analysis re re-tools reverse-engineering static-analysis tools

Last synced: 09 Nov 2024

https://github.com/fp4php/functional

PHP Functional Programming library. Monads, common use functions and generic collections.

collections collections-framework function functional functional-programming functions immutable monads php psalm psalm-plugin static-analysis streams

Last synced: 08 Nov 2024

https://github.com/git-afsantos/haros

H(igh) A(ssurance) ROS - Static analysis of ROS application code.

quality-assurance robotics ros static-analysis

Last synced: 13 Nov 2024

https://github.com/yinwang0/rubysonar

A semantic indexer for Ruby with interprocedual type inference

code-analysis code-index code-search ruby static-analysis type-inference

Last synced: 15 Jan 2025

https://github.com/brentlintner/synt

Find similar functions and classes in your JavaScript/TypeScript code

duplicate javascript nodejs similarity static-analysis typescript

Last synced: 19 Jan 2025

https://github.com/arguslab/Argus-SAF

Argus static analysis framework

android security static-analysis

Last synced: 21 Nov 2024

https://github.com/Perl-Critic/Perl-Critic

The leading static analyzer for Perl. Configurable, extensible, powerful.

perl perl-best-practices static-analysis static-code-analysis

Last synced: 10 Nov 2024

https://github.com/oliviertassinari/i18n-extract

Manage localization with static analysis. :mag:

es6 i18n localization static-analysis translation

Last synced: 18 Jan 2025

https://github.com/naivesystems/analyze

NaiveSystems Analyze is a static analysis tool for code security and compliance.

autosar cert code-scanning coding-standards cpp14 cppcheck functional-safety iso26262 misra misra-c static-analysis

Last synced: 20 Nov 2024

https://github.com/cflint/CFLint

Static code analysis for CFML (a linter)

cfml code-quality coldfusion findbugs lint linter lucee static-analysis static-code-analysis

Last synced: 30 Oct 2024

https://github.com/ondrajz/goexplorer

Interactive overview of Go packages using dynamic visualization.

experimental go golang gopath static-analysis visualization

Last synced: 19 Nov 2024

https://github.com/mgechev/ngast

Parser for Angular projects.

angular ast codelyzer static-analysis typescript

Last synced: 17 Jan 2025

https://github.com/phpstan/phpstan-webmozart-assert

PHPStan extension for webmozart/assert

assert php php7 phpstan static-analysis static-code-analysis

Last synced: 17 Jan 2025

https://github.com/tomasvotruba/unused-public

Find Unused Public Elements in Your Code

dead-code phpstan static-analysis

Last synced: 18 Jan 2025

https://github.com/seahorn/sea-dsa

A new context, field, and array-sensitive heap analysis for LLVM bitcode based on DSA.

llvm pointer-analysis static-analysis verification

Last synced: 17 Jan 2025

https://github.com/dlint-py/dlint

Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.

dlint flake8 linter python security static-analysis

Last synced: 15 Nov 2024

https://github.com/0xphoenix/mazewalker

Toolkit for enriching and speeding up static malware analysis

ida-pro idapython idapython-plugin malware-analysis reverse-engineering static-analysis

Last synced: 16 Nov 2024

https://github.com/gilbsgilbs/babel-plugin-i18next-extract

Babel plugin that statically extracts i18next and react-i18next translation keys.

babel-plugin extractor i18n i18next internationalization react react-i18next static-analysis

Last synced: 12 Nov 2024

https://github.com/green-code-initiative/ecoCode

Reduce the environmental footprint of your software programs with SonarQube

climate-change code-quality ecodesign ecoscore energy-efficiency sonarqube sonarqube-plugin static-analysis sustainability

Last synced: 07 Nov 2024

https://github.com/alejandro-yakovlev/symfony-docker

Dockerise Symfony Application (Symfony 6 + Clean Architecture + DDD + CQRS + Docker + Xdebug + PHPUnit + Doctrine ORM + JWT Auth + Static analysis + CI/CD)

cicd clean-architecture clean-code ddd deptrac doctrine doctrine-orm jwt-auth php php-cs-fixer php8 phpstan phpunit static-analysis symfony symfony-docker symfony-docker-composer symfony-dockerize symfony6 xdebug

Last synced: 16 Jan 2025

https://github.com/adamculp/php-code-quality

Docker image containing multiple code quality tools for PHP (phpqatools and more).

code-quality docker docker-image pdepend php php-codesniffer php7 php8 phpcpd phploc phpmd phpmetrics phpqatools phpstan phpunit static-analysis

Last synced: 19 Dec 2024

https://github.com/HarvardPL/formulog

Datalog with support for SMT queries and first-order functional programming

datalog logic-programming smt static-analysis symbolic-execution

Last synced: 05 Nov 2024

https://github.com/Benjamin-Dobell/IntelliJ-Luanalysis

Type-safe Lua IDE — IntelliJ IDEA plugin

intellij intellij-plugin lua lua-ide lua-plugin luanalysis static-analysis type-checking

Last synced: 28 Oct 2024

https://github.com/mfvanek/pg-index-health

pg-index-health is a Java library for analyzing and maintaining indexes and tables health in Postgresql databases.

gradle hacktoberfest indexes java java-11 kotlin-dsl mutation-testing pitest postgres postgresql static-analysis testcontainers

Last synced: 18 Jan 2025

https://github.com/kitabisa/sonarqube-action

Integrate SonarQube scanner to GitHub Actions

code-quality code-review devsecops github-actions security sonar-scanner sonarqube static-analysis

Last synced: 19 Jan 2025

https://github.com/crytic/amarna

Amarna is a static-analyzer and linter for the Cairo programming language.

cairo linter starknet static-analysis

Last synced: 07 Jan 2025

https://github.com/tiiuae/sbomnix

A suite of utilities to help with software supply chain challenges on nix targets

bill-of-materials cpe cyclonedx dependencies nix purl python sbom sbom-generator sbom-tool security software-bill-of-materials software-supply-chain software-supply-chain-security spdx-sbom static-analysis vulnerability-scanners

Last synced: 19 Jan 2025

https://github.com/sirbrillig/phpcs-variable-analysis

Find undefined and unused variables with the PHP Codesniffer static analysis tool.

linting php php-codesniffer phpcs static-analysis undefined-variables unused-variables

Last synced: 17 Jan 2025

https://github.com/JetBrains/ruby-type-inference

Dynamic definitions and types provider for ruby static analysis

dynamic-analysis ruby rubymine static-analysis

Last synced: 12 Nov 2024

https://github.com/jetbrains/ruby-type-inference

Dynamic definitions and types provider for ruby static analysis

dynamic-analysis ruby rubymine static-analysis

Last synced: 14 Jan 2025

https://github.com/JacyCui/static-analysis

静态分析基础教程

static-analysis

Last synced: 05 Nov 2024

https://github.com/php-stubs/wordpress-stubs

Up-to-date WordPress function and class declaration stubs for static analysis by PHPStan

definitions phpstan static-analysis stubs wordpress

Last synced: 15 Jan 2025

https://github.com/Fleynaro/SDA

SDA is a rich cross-platform tool for reverse engineering that focused firstly on analysis of computer games. I'm trying to create a mix of the Ghidra, Cheat Engine and x64dbg. My tool will combine static and dynamic analysis of programs. Now SDA is being developed.

analysis debugger decompiler disassembler dynamic-analysis games pe-format reverse-engineering static-analysis tool x86 x86-64

Last synced: 20 Nov 2024

https://github.com/knight0x07/pyc2bytecode

A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

blueteam cybersecurity disassembler infosec infosectools malware-analysis malware-research python reverse-engineering security-tools static-analysis threat-intelligence

Last synced: 11 Nov 2024

https://github.com/darx0r/stingray

IDAPython plugin for finding function strings recursively

ida-plugin ida-pro idapython idapython-plugin reverse-engineering static-analysis string-search

Last synced: 16 Nov 2024

https://github.com/alexkohler/nakedret

nakedret is a Go static analysis tool to find naked returns in functions greater than a specified function length.

go golang static-analysis static-analyzer static-code-analysis

Last synced: 17 Nov 2024

https://github.com/tomasvotruba/phpstan-bodyscan

Get error count for each PHPStan level

php phpstan static-analysis

Last synced: 20 Jan 2025

https://github.com/camfort/camfort

Light-weight verification and transformation tools for Fortran

automated-refactoring fortran haskell static-analysis verification

Last synced: 19 Jan 2025

https://github.com/trailofbits/pasta

Peter's Amazing Syntax Tree Analyzer

ast clang compiler llvm static-analysis

Last synced: 20 Jan 2025

https://github.com/SummerSec/SPATool

静态程序分析工具主要生成方法的CFG和.java文件的AST

ast cfg programming-language sa spa spatool static-analysis

Last synced: 21 Nov 2024

https://github.com/summersec/spatool

静态程序分析工具主要生成方法的CFG和.java文件的AST

ast cfg programming-language sa spa spatool static-analysis

Last synced: 20 Nov 2024

https://github.com/HaxeCheckstyle/haxe-checkstyle

Haxe Checkstyle

checkstyle haxe static-analysis

Last synced: 17 Nov 2024

https://github.com/mumuki/mulang

:bamboo: Universal, Multi Language, Multi Paradigm code analyzer

ast browser code-analysis educational functional haskell inspection java javascript languages logic-paradigm mulang-ast mumuki nodejs object-oriented prolog python ruby static-analysis

Last synced: 19 Jan 2025

https://github.com/pytorch-labs/torchfix

TorchFix - a linter for PyTorch-using code with autofix support

flake8 flake8-plugin hacktoberfest linter python pytorch static-analysis static-code-analysis

Last synced: 15 Jan 2025

https://github.com/codeclimate/codeclimate-duplication

Code Climate engine for code duplication analysis

code-quality codeclimate codeclimate-engine duplication javascript php python quality ruby static-analysis static-code-analysis

Last synced: 06 Jan 2025

https://github.com/aeneasverif/charon

Interface with the rustc compiler for the purpose of program verification

compiler formal-methods formal-verification program-verification rust rust-lang static-analysis

Last synced: 20 Jan 2025

https://github.com/antonboom/testifylint

The Golang linter that checks usage of github.com/stretchr/testify.

go golang linter static-analysis testify

Last synced: 18 Jan 2025

https://github.com/triat/terraform-security-scan

Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec

actions aws azure ci compliance google-cloud-platform hacktoberfest scanner security static-analysis terraform tfsec

Last synced: 21 Nov 2024

https://github.com/tomasvotruba/class-leak

Find leaking classes that you never use... and get rid of them.

dead-code php static-analysis unused-classes

Last synced: 19 Jan 2025

https://github.com/csvl/SEMA

SEMA is based on angr, a symbolic execution engine used to extract API calls. Especially, we extend ANGR with strategies to create representative signatures based on System Call Dependency graph (SCDG). Those SCDGs can be exploited in machine learning modules to do classification/detection.

angr binary-analysis classification concolic-execution ctf cybersecurity detection linux malware malware-analysis malware-detection malware-research python reverse reverse-engineering sema static-analysis symbolic symbolic-execution windows

Last synced: 18 Jan 2025

https://github.com/okeuday/pest

:beetle: Primitive Erlang Security Tool

elixir elixir-security erlang erlang-security security security-audit security-scanner static-analysis static-code-analysis vulnerability-detection

Last synced: 14 Jan 2025

https://github.com/datadog/datadog-static-analyzer

Datadog Static Analyzer

ci cicd circle denoland github-actions-ci rust static-analysis tree-sitter

Last synced: 19 Jan 2025

https://github.com/bradleyfalzon/gopherci

GopherCI was a project to help you maintain high-quality Go projects, by checking each GitHub Pull Request, for backward incompatible changes, and a suite of other third party static analysis tools.

continuous-integration go linter static-analysis

Last synced: 03 Dec 2024

https://github.com/projectwallace/constyble

CSS complexity linter

analysis branding complexity css css-linter linter performance projectwallace static-analysis stats test threshold

Last synced: 11 Jan 2025

https://github.com/phpstan/phpstan-nette

Nette Framework class reflection extension for PHPStan & framework-specific rules

nette-framework php php7 phpstan static-analysis static-analyzer static-code-analysis testing

Last synced: 17 Jan 2025

https://github.com/beliavsky/fortran-tools

Links to Fortran compilers, preprocessors, static analyzers, transpilers, IDEs, build systems, etc.

automatic-differentiation automatic-documentation build-system build-tool command-line command-line-parser compilers documentation fortran fortran-compiler hpc list makefile makefile-generation preprocessor static-analysis static-analyzer text-editor tools transpilers

Last synced: 03 Dec 2024

https://github.com/integralist/vim-mypy

Vim plugin for executing Python's optional static type checker MyPy (http://mypy-lang.org/)

checker mypy open-source plugin static-analysis vim vim-mypy vim-plugins

Last synced: 27 Oct 2024

https://github.com/Integralist/vim-mypy

Vim plugin for executing Python's optional static type checker MyPy (http://mypy-lang.org/)

checker mypy open-source plugin static-analysis vim vim-mypy vim-plugins

Last synced: 10 Nov 2024

https://github.com/future-architect/eslint-plugin-vue-scoped-css

ESLint plugin for Scoped CSS in Vue.js

css eslint eslint-plugin npm npm-package scoped-css scss static-analysis stylus vue

Last synced: 18 Jan 2025

https://github.com/checkstyle/eclipse-cs

The Eclipse Checkstyle plug-in integrates the Checkstyle Java code auditor into the Eclipse IDE. The plug-in provides real-time feedback to the user about violations of rules that check for coding style and possible error prone code constructs.

analyzer code-analysis code-quality eclipse-plugin static-analysis

Last synced: 15 Jan 2025