Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

Projects in Awesome Lists tagged with static-analyzer

A curated list of projects in awesome lists tagged with static-analyzer .

https://github.com/phpstan/phpstan

PHP Static Analysis Tool - discover bugs in your code without running it!

php php7 phpstan static-analysis static-analyzer static-code-analysis testing

Last synced: 12 May 2025

https://github.com/llvm-mirror/clang

Mirror kept for legacy. Moved to https://github.com/llvm/llvm-project

c c-plus-plus coding-style compiler objective-c performance static-analyzer

Last synced: 16 Dec 2025

https://github.com/phpmetrics/phpmetrics

Beautiful and understandable static analysis tool for PHP

ci metrics php quality static-analyzer

Last synced: 16 Dec 2025

https://github.com/phpmetrics/PhpMetrics

Beautiful and understandable static analysis tool for PHP

ci metrics php quality static-analyzer

Last synced: 29 Mar 2025

https://github.com/ericsson/codechecker

CodeChecker is an analyzer tooling, defect database and viewer extension for static and dynamic analyzer tools.

analysis c clang clang-tidy codechecker cpp database defects docker linux llvm macosx objective-c results-viewer static-analysis static-analyzer static-analyzers vue

Last synced: 12 May 2025

https://github.com/Ericsson/codechecker

CodeChecker is an analyzer tooling, defect database and viewer extension for static and dynamic analyzer tools.

analysis c clang clang-tidy codechecker cpp database defects docker linux llvm macosx objective-c results-viewer static-analysis static-analyzer static-analyzers vue

Last synced: 28 Apr 2025

https://github.com/phpmd/phpmd

PHPMD is a spin-off project of PHP Depend and aims to be a PHP equivalent of the well known Java tool PMD. PHPMD can be seen as an user friendly frontend application for the raw metrics stream measured by PHP Depend.

clean-code hacktoberfest mess-detector php pmd static-analysis static-analyzer

Last synced: 13 May 2025

https://github.com/phpstan/phpdoc-parser

Next-gen phpDoc parser with support for intersection types and generics

php php7 phpdoc phpstan static-analysis static-analyzer static-code-analysis testing

Last synced: 16 May 2025

https://github.com/sleekbyte/tailor

Cross-platform static analyzer and linter for Swift.

apple linter static-analyzer swift

Last synced: 08 Apr 2025

https://github.com/sonarsource/sonar-java

:coffee: SonarSource Static Analyzer for Java Code Quality and Security

analysis analyzer java language-team quality sonarcloud sonarlint sonarqube static-analysis static-analyzer static-code-analysis

Last synced: 13 May 2025

https://github.com/SonarSource/sonar-java

:coffee: SonarSource Static Analyzer for Java Code Quality and Security

analysis analyzer java language-team quality sonarcloud sonarlint sonarqube static-analysis static-analyzer static-code-analysis

Last synced: 27 Mar 2025

https://github.com/alexkohler/prealloc

prealloc is a Go static analysis tool to find slice declarations that could potentially be preallocated.

go golang prealloc-suggestions slice static-analysis static-analyzer static-code-analysis

Last synced: 11 May 2025

https://github.com/kowainik/stan

🕵️ Haskell STatic ANalyser

analysis ghc hacktoberfest haskell hie static-analyzer

Last synced: 14 May 2025

https://github.com/burtonqin/lockbud

Detect concurrency and memory bugs and possible panic locations in Rust projects

bug-detection rust security static-analyzer

Last synced: 30 Aug 2025

https://github.com/BurtonQin/lockbud

Statically detect memory, concurrency bugs and possible panic locations for Rust.

bug-detection deadlock-detection mir rust static-analyzer

Last synced: 05 Apr 2025

https://github.com/insidersec/insider

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

android android-security cli csharp dotnet insider ios ios-security javascript kotlin maven nodejs owasp sast security-automation security-scanner security-tools static-analysis static-analyzer swift

Last synced: 05 Apr 2025

https://github.com/vbpf/prevail

eBPF verifier based on abstract interpretation

abstract-interpretation ebpf ebpf-verifier static-analyzer

Last synced: 16 May 2025

https://github.com/vbpf/ebpf-verifier

eBPF verifier based on abstract interpretation

abstract-interpretation ebpf ebpf-verifier static-analyzer

Last synced: 30 Mar 2025

https://github.com/ajinabraham/njsscan

njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.

appsec codereview codescanner devsecops expressjs jslint lint linter njsscan nodejs nodejsscan nodesecurity python sast security security-tools semantic static-analysis static-analyzer staticanalysis

Last synced: 14 May 2025

https://github.com/rizsotto/scan-build

Clang's scan-build re-implementation in python

build-system clang compilation-database static-analyzer

Last synced: 16 May 2025

https://github.com/florianschanda/miss_hit

MATLAB Independent, Small & Safe, High Integrity Tools - code formatter and more

code-formatter formal-methods lexer linter matlab metrics octave parser python3 simulink static-analyzer style-checker

Last synced: 04 Apr 2025

https://github.com/softsec-kaist/smartian

Smartian: Enhancing Smart Contract Fuzzing with Static and Dynamic Data-Flow Analyses (ASE '21)

fsharp fuzzer fuzzing smart-contract-testing static-analyzer

Last synced: 05 Apr 2025

https://github.com/alexkohler/nakedret

nakedret is a Go static analysis tool to find naked returns in functions greater than a specified function length.

go golang static-analysis static-analyzer static-code-analysis

Last synced: 11 May 2025

https://github.com/foospidy/grepbugs

A regex based source code scanner.

cloc grep python regex scanner static-analyzer static-code-analysis

Last synced: 12 Apr 2025

https://github.com/phpstan/phpstan-nette

Nette Framework class reflection extension for PHPStan & framework-specific rules

nette-framework php php7 phpstan static-analysis static-analyzer static-code-analysis testing

Last synced: 15 May 2025

https://github.com/cr0hn/dockerfile-security

Static security checker for Dockerfiles

devops devsecops docker security static-analyzer

Last synced: 20 Aug 2025

https://github.com/alexkohler/unimport

unimport is a Go static analysis tool to find unnecessary import aliases.

go golang static-analysis static-analyzer static-code-analysis

Last synced: 07 May 2025

https://github.com/lisa-analyzer/lisa

📚 a modular easy to use Library for Static Analysis aiming at multi-language analysis

abstract-interpretation analysis analyzer cybersecurity formal-methods java lisa program-verification static-analysis static-analyzer static-analyzers

Last synced: 27 Feb 2025

https://github.com/shramos/pyc-cfg

Pyc-cfg is a pure python control flow graph builder for almost all Ansi C programming language.

ast cfg clang control-flow-analysis control-flow-graph python static-analyzer

Last synced: 31 Jul 2025

https://github.com/flowr-analysis/flowr

A dataflow analysis framework for the R programming language.

dataflow-analysis program-slicing r static-analyzer static-program-analysis

Last synced: 04 Jan 2026

https://github.com/dsheiko/jscodesniffer

⛔️ [DEPRECATED] Tool to ensure that your JavaScript code does not violate the specified coding standard (Idiomatic Style Manifesto or JQuery Core Style Guidelines)

code-sniffer deprecated idiomatic-js jquery-coding-style linter naming-conventions obsolete standard static-analyzer

Last synced: 22 Mar 2025

https://github.com/fdiaz/SwiftInspector

SwiftInspector is a command line tool built on top of SwiftSyntax to help inspect usage of Swift code

cli static-analyzer swift

Last synced: 22 Jul 2025

https://github.com/degraciamathieu/php-smelly-code-detector

Detects code smells by assessing complexity to identify potentially problematic code

ci metrics php quality static-analyzer

Last synced: 02 Sep 2025

https://github.com/rightcapitalhq/phpdoc-parser

Next-gen PHPDoc parser with support for intersection types and generics(TypeScript version)

ast javascript parser php php7 phpdoc phpdoc-parser phpstan rightcapital static-analy static-analyzer static-code-analyzer typescript

Last synced: 13 Apr 2025

https://github.com/knsh14/gocc

check cyclomatic complexity of go functions

cyclomatic-complexity go static-analysis static-analyzer

Last synced: 28 Apr 2025

https://github.com/correia-jpv/fucking-static-analysis

⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more. With repository stars⭐ and forks🍴

analysis awesome awesome-list code-quality lint linter sast static-analysis static-analyzer static-code-analysis

Last synced: 27 Apr 2025

https://github.com/best-doctor/mr_proper

Static Python code analyzer, that tries to check if functions in code are pure or not and why.

pure-function python static-analyzer

Last synced: 04 Oct 2025

https://github.com/phpstan/phpstan-dibi

Dibi class reflection extension for PHPStan

dibi php php7 phpstan static-analysis static-analyzer static-code-analysis testing

Last synced: 15 Apr 2025

https://github.com/iagoabal/eba

EBA is a static bug finder for C.

c static-analysis static-analyzer static-code-analysis

Last synced: 10 Apr 2025

https://github.com/sri-csl/bixie

Inconsistent code detection for Java.

inconsistency java program-analysis static-analysis static-analyzer

Last synced: 07 Apr 2025

https://github.com/degraciamathieu/php-arguments-detector

Keep control over the complexity of your methods by checking that they do not have too many arguments.

ci metrics php quality static-analyzer

Last synced: 14 Aug 2025

https://github.com/degraciamathieu/php-wording-detector

Simple tool to analyze and split the words contained in your code to check your DDD approach.

ci ddd metrics php quality static-analyzer

Last synced: 14 Aug 2025

https://github.com/marodev/EagleRepair

EagleRepair fixes static analysis warnings in C# programs. Easy to use. Blazing fast. Based on research.

analyzer code-fix code-quality csharp resharper roslyn roslyn-code-analysis sonarqube static-analyzer

Last synced: 31 Mar 2025

https://github.com/janwilmans/opencanary

A set of scripts for aggregation, analysis and reporting of build and static analysis results.

code cpp11 cpp14 cpp17 cpp20 cpp23 quality-metrics software-quality static-analyzer

Last synced: 22 Apr 2025

https://github.com/yonyong/sonar-custom-pmd-plugin

由于目前自定义sonar插件开发没有统一的框架,实现比较复杂, 因此开发了此骨架项目。开发者可以按照文档步骤新增自定义的sonar插件。

custom-plugin java p3c pmd sonar-plugin sonarqube sonarqube-plugin static-analyzer static-code-analysis

Last synced: 11 Jun 2025

https://github.com/vprlab/somo

A specialized tool for smart contract modifier analysis based on the Modifier Dependency Graph (MDG)

modifier program-analysis security-tools slither smart-contracts solidity static-analyzer taint-analysis

Last synced: 20 Jun 2025

https://github.com/bbc2/mini-android

Static analyzer for Android-like applications

android ocaml research-project static-analyzer toy-language

Last synced: 11 Apr 2025

https://github.com/multiparty/carousels

Library for concisely defining abstract metrics over JavaScript syntax.

abstract-interpretation analysis javascript performance performance-analysis performance-metrics static-analyzer

Last synced: 10 Jul 2025

https://github.com/elliotchance/switch-check

Validate switch statements contain all enum values.

enums golang static-analysis static-analyzer switch

Last synced: 14 Sep 2025

https://github.com/idrinth-api-bench/duplicate-style-check

This small library checks media queries for duplicate style definitions.

cli css static-analyzer

Last synced: 13 Aug 2025

https://github.com/degraciamathieu/php-variable-lifetime-analyzer

Track your variables' lifetime to encourage shorter scopes

php static-analysis static-analyzer

Last synced: 14 Aug 2025

https://github.com/degraciamathieu/php-line-length-detector

A simple way to analyze the line length of your PHP files.

ci metrics php quality static-analyzer

Last synced: 14 Aug 2025

https://github.com/pauliusm/pronto-yamllint

Pronto runner for YAMLlint

pronto static-analyzer yaml yamllint yml

Last synced: 11 Apr 2025

https://github.com/rightcapitalhq/php-parser

TypeScript types for PHP Parser JSON representation

ast parser php php-parser phpparser static-analysis static-analyzer typescript

Last synced: 13 Apr 2025

https://github.com/yugr/parmatch

A simple script for finding unbound parameters in Verilog module instantiations.

static-analysis static-analyzer verilog

Last synced: 04 Nov 2025

https://github.com/tristanisham/icy

A static analysis tool for PHP focused on developer experience

cli php static-analyzer

Last synced: 20 Aug 2025

https://github.com/martinwitt/infer-train

A github action to run infer for java code

github-action github-action-docker java quarkus static-analyzer

Last synced: 22 Feb 2025

https://github.com/yugr/gatecheck

Yet another Verilog static analyzer

clock-g gating static-analysis static-analyzer verilog

Last synced: 06 Jul 2025

https://github.com/zhoudaxia233/py-wtf

A static analyzer of Python which forces you to write comments, and write them in a well-mannered way.

python3 static-analyzer

Last synced: 25 Dec 2025

https://github.com/zeta611/gisa

GISA is an implementation of "a very basic language" presented in 'Introduction to Static Analysis: An Abstract Interpretation Perspective.'

introduction-to-static-analysis programming-language programming-language-theory static-analysis static-analyzer yacc

Last synced: 17 Aug 2025

https://github.com/red-rapious/static-analyzer

Static Analyzer for a language similar to C, written in OCaml as a projet for the class "Sémantique et Application à la vérification formelle de programmes" of 2024.

ocaml static-analysis static-analyzer

Last synced: 15 Mar 2025

https://github.com/johannesbuchner/pystrict3

pystrict3 analyses code for sanity and plausibility. Checks whether function calls are plausible and docstrings match function signatures.

python3 static-analysis static-analyzer

Last synced: 15 Jul 2025

https://github.com/jboillot/analyser

Analyser is a static analyser which finds errors and undefinded behaviors in C programs with inline assembly.

c inline-assembly ocaml-program static-analyzer

Last synced: 25 Oct 2025

https://github.com/mrseanryan/eslint-plugin-ts-ban-snippets

:no_entry_sign: A custom eslint rule to ban configurable lists of TypeScript code snippets. examples: "return void reject", "it.only", "debugger".

ban-snippets code-analysis eslint linter linting static-analysis static-analyzer typescript

Last synced: 09 Jul 2025

https://github.com/lucaslarson/xcodewarnings.xcconfig

🛠 before warned, be forewarned with a pedantic 𝚡𝚌𝚌𝚘𝚗𝚏𝚒𝚐 file for Xcode

compilation-errors hacktoberfest static-analysis static-analyzer xcconfig xcode xcode-warnings xcodewarnings

Last synced: 28 Feb 2025

https://github.com/catseye/yucca

MIRROR of https://codeberg.org/catseye/yucca : A dialect-agnostic static analyzer for 8-bit BASIC programs

basic-programming-language code-smells static-analysis static-analyzer

Last synced: 15 Sep 2025