Static Analysis

663 projects

Showing 36 of 663 projects

lockbudRust

A static analysis tool for Rust that detects concurrency bugs, memory bugs, and panic locations.

#research-tool#memory-safety#concurrency-bugs

Stars591

Forks39

Last commit24 days ago

ES and browser globalsJavaScript

A JSON dataset of global identifiers from different JavaScript environments for static analysis tools.

#global-variables#nodejs#javascript

Stars589

Forks133

Last commit1 month ago

sqlalchemy-stubsPython

Mypy plugin and type stubs for SQLAlchemy to enable precise static type checking in Python.

#stubs#orm#database

Stars585

Forks97

Last commit2 years ago

PHP Magic Number DetectorPHP

A static analysis tool that detects magic numbers in PHP code to improve readability and maintainability.

#php-analyzer#development-tool#magic-number-detection

Stars584

Forks47

Last commit3 months ago

FlawFinderPython

A static analysis tool that scans C/C++ source code for potential security vulnerabilities using lexical scanning.

#cwe-compatible#c-cpp#command-line-tool

Stars571

Forks83

Last commit22 days ago

unparamGo

Reports unused function parameters and results in Go code while minimizing false positives.

#code-cleanup#developer-tools#results

Stars571

Forks29

Last commit7 months ago

MarkdownJavaScript

An ESLint plugin to lint JavaScript, JSX, TypeScript, and other code blocks within Markdown documents.

#developer-tools#linter#static-code-analysis

Stars569

Forks85

Last commit8 days ago

gulp-eslintJavaScript

A Gulp plugin that integrates ESLint into your build pipeline to lint JavaScript files.

#developer-tools#build-automation#javascript-linting

Stars565

Forks117

Last commit1 year ago

PHPQAXSLT

A command-line tool that runs multiple PHP static analysis and quality assurance tools with a single command.

#composer#parallel-execution#command-line-tool

Stars563

Forks59

Last commit6 months ago

amebaCrystal

A static code analysis tool for Crystal that enforces code style and catches code smells.

#linter#crystal-lang#code-linter

A Scala compiler plugin for static code analysis that detects bugs, non-idiomatic code, and style violations.

#hacktoberfest#gradle#inspection

Stars557

Forks96

Last commit6 days ago

Insider CLIGo

A static application security testing (SAST) CLI tool that scans source code for OWASP Top 10 vulnerabilities across multiple programming languages.

#multi-language#owasp#ios-security

Stars552

Forks80

Last commit4 years ago

Microsoft.CodeAnalysis.TestingC#

Templates and tools for building Roslyn-based analyzers, code fixes, and Visual Studio extensions.

#syntax-tree#visualizer#dotnet

Stars547

Forks257

Last commit8 days ago

SkunkRuby

A RubyCritic extension that calculates a SkunkScore to identify the most complex code with the least test coverage for refactoring prioritization.

#hacktoberfest#code-quality-analyzer#simplecov

Stars544

Forks32

Last commit4 months ago

Gato-XPython

A fast scanning and attack toolkit for identifying and exploiting GitHub Actions vulnerabilities at scale.

#python-tool#cicd#red-teaming

Stars543

Forks51

Last commit13 days ago

goreturnsGo

A Go tool that automatically fills in zero-value return statements to match function signatures, saving development time.

#boilerplate-reduction#editor-integration#gofmt-alternative

Stars537

Forks53

Last commit2 years ago

dephpendPHP

A static analysis tool that detects architectural flaws and dependency issues in PHP applications before they become maintenance nightmares.

#dsm#xdebug#code-quality

Stars533

Forks24

Last commit4 months ago

PortExScala

A Java library for static malware analysis of Portable Executable files with robust handling of malformations.

#java-library#portable-executable#entropy-calculation

Stars532

Forks91

Last commit2 months ago

AndrowarnHTML

A static code analyzer that detects and reports potential malicious behaviors in Android applications.

#androguard#privacy-audit#apk-analysis

Stars529

Forks164

Last commit6 years ago

RefactorFirstJava

A Maven plugin that identifies and prioritizes God Classes, Highly Coupled classes, and Class Cycles in Java codebases for refactoring.

#software-maintenance#report#design-smells

Stars525

Forks44

Last commit1 day ago

web-component-analyzerTypeScript

A CLI tool that analyzes web components and generates documentation in multiple formats.

#stencil#web-components#developer-tools

Stars518

Forks68

Last commit2 years ago

wokeGo

A text file analysis tool that detects non-inclusive language in source code and suggests inclusive alternatives.

#developer-tools#inclusive-language#pre-commit

Stars513

Forks63

Last commit2 years ago

sqlvetGo

A static analysis tool for Go that validates raw SQL queries to catch syntax errors and prevent SQL injections.

#database#linter#security

Stars499

Forks29

Last commit11 days ago

Luau Language ServerLuau

A language server implementation for the Luau programming language, providing IDE features like autocomplete and type checking.

#hacktoberfest#luau#language-server

Stars492

Forks132

Last commit3 days ago

RefactoringMinerJava

A library that detects refactorings and generates AST diffs for Java, Python, and Kotlin code changes.

#multi-language#java-library#git-history

An ESLint plugin that suggests dependency optimizations, native alternatives, and detects redundant polyfills.

#dependency-analysis#nodejs#code-quality

Stars489

Forks9

Last commit19 days ago

CodeBuffJava

A universal code formatter that uses machine learning to learn formatting patterns from a corpus of existing code.

#developer-tools#java#pretty-printing

Stars477

Forks85

Last commit11 months ago

Dead Code DetectorPHP

A PHPStan extension that detects unused PHP code (methods, constants, properties, enum cases) and can automatically remove it.

#laravel#dead#unused-code

Stars477

Forks23

Last commit6 days ago

HardcoreJavaScript

An extremely strict yet practical ESLint configuration with 51 plugins and over 1300 rules for JavaScript, TypeScript, React, Vue, and Node.js.

#developer-tools#config#nodejs

Stars467

Forks14

Last commit1 month ago

ineffassignGo

Detects ineffectual assignments in Go code where variables are assigned but never used.

#developer-tools#go-linter#inefficient-code

Stars466

Forks55

Last commit9 months ago

errlogGo

A Go library that uses static and stack-trace analysis to pinpoint errors and speed up debugging.

#developer-tools#stack-trace#go-library

Stars460

Forks20

Last commit2 years ago

HTMLJavaScript

An ESLint plugin to extract and lint inline JavaScript scripts from HTML and XML files.

#developer-tools#html#javascript-linting

Stars457

Forks56

Last commit1 month ago

ckJava

A Java library for calculating class-level and method-level code metrics via static analysis, without requiring compiled code.

#code-metrics#software-quality#java

Stars451

Forks168

Last commit1 month ago

eslint-interactiveTypeScript

A CLI tool that groups ESLint errors by rule and provides per-rule actions like auto-fix and disable comments to efficiently handle large linting outputs.

#developer-tools#automated-fixes#cli-tool

Open-source static analysis tool for Python, TypeScript, and Go that detects dead code, security vulnerabilities, and AI-generated regressions.

#security-scanning#ai-code-review#vulnerability-detection

Stars451

Forks23

Last commit2 days ago

luacheckLua

A static analyzer and linter for Lua code that detects undefined globals, unused variables, and other issues.

#linter#luajit#cli-tool

Stars445

Forks60

Last commit1 month ago

PreviousPage 11 of 19

Related Tags

Community-curated · Updated weekly · 100% open source

Found a gem we're missing?

Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.

Submit a project Star on GitHub