Static Analysis

663 projects

Showing 36 of 663 projects

wrapcheckGo

A Go linter that checks if errors from external packages are properly wrapped to improve debugging.

#hacktoberfest#go-modules#go-linter

Stars373

Forks33

Last commit6 months ago

forbidden-apisJava

A Java bytecode analyzer that detects and blocks forbidden API calls during builds with Ant, Maven, or Gradle.

#gradle#build-tools#static-code-analysis

Stars369

Forks37

Last commit8 months ago

duplGo

A Go tool for detecting code clones in Go source files using suffix trees on serialized ASTs.

#suffix-tree#ast-analysis#developer-tools

Stars369

Forks22

Last commit3 months ago

BladestanPHP

A PHPStan extension for static analysis of Blade templates in Laravel projects.

#developer-tools#laravel#code-quality

Stars367

Forks26

Last commit1 month ago

HawkeyeJavaScript

A security scanning CLI tool that detects vulnerabilities, secrets, and outdated dependencies across multiple programming languages.

#multi-language#pre-commit-hooks#secret-detection

Stars362

Forks86

Last commit4 years ago

ProgpilotPHP

A static application security testing (SAST) tool for PHP that detects vulnerabilities like XSS through taint analysis.

#taint-analysis#static-code-analysis#code-security

Stars362

Forks64

Last commit9 months ago

Vue Mess DetectorTypeScript

A static code analysis tool for detecting code smells and best practice violations in Vue.js and Nuxt.js projects.

#code-smells#developer-tools#code-quality

Stars359

Forks13

Last commit3 days ago

RightTyperPython

A Python tool that automatically generates type annotations by monitoring runtime execution, with low overhead and tensor shape inference.

#runtime-monitoring#developer-tools#typing

Stars358

Forks7

Last commit18 days ago

addons-linterJavaScript

A linter for Firefox WebExtensions that validates add-ons for security, performance, and policy compliance.

#developer-tools#browser-extensions#security-scanning

Stars358

Forks158

Last commit5 days ago

parallel-lintPHP

A parallel PHP syntax checker with multiple output formats and Git blame integration.

#command-line-tool#ci-cd#code-quality

Stars355

Forks25

Last commit1 month ago

JAADASJava

A static analysis tool for Android applications that detects security vulnerabilities through inter-procedure and intra-procedure analysis.

#soot-framework#vulnerability#taint-analysis

Stars352

Forks107

Last commit9 years ago

linters

A community wiki curating static analysis tools (linters) for improving code quality across programming languages and formats.

#developer-tools#security-scanning#programming-languages

Stars349

Forks30

Last commit2 months ago

ConcuerrorErlang

A stateless model checking tool for Erlang programs that systematically tests for concurrency errors.

#concurrent-erlang-programs#testing-tool#otp

Stars346

Forks43

Last commit22 days ago

vuln-regex-detectorPerl

A tool to scan projects for regexes vulnerable to catastrophic backtracking (REDOS) through static extraction, detection, and validation.

#programming-security#regex-security#security-scanning

A linting tool for HAML that enforces style consistency and integrates with RuboCop for static analysis.

#developer-tools#rubocop#template-engine

Stars336

Forks111

Last commit6 days ago

NJavaScript

An ESLint plugin providing additional rules for Node.js-specific code patterns and best practices.

#commonjs#es-modules#nodejs

Stars336

Forks60

Last commit6 days ago

callGraphPerl

A multi-language static call graph generator that parses source code to visualize function dependencies across 20+ programming languages.

#multi-language#basic#callgraph

Stars334

Forks33

Last commit1 year ago

nixpkgs-hammeringNix

A linter for Nix package expressions that identifies common mistakes and provides explanations for Nixpkgs contributors.

#developer-tools#nix-overlays#code-quality

Stars331

Forks19

Last commit14 days ago

scryCrystal

A language server implementing the Language Server Protocol for Crystal, providing code analysis and editor integration.

#language-server#ide-integration#crystal-lang

Stars331

Forks31

Last commit3 years ago

phpqa - jmolivasPHP

A CLI tool that unifies multiple PHP quality assurance and static analysis tools under a single command interface.

#pre-commit-hooks#analyzer#development-workflow

Stars325

Forks29

Last commit8 years ago

SLAyerOCaml

An automatic formal verification tool that uses separation logic to verify memory safety of C programs.

#systems-programming#research-tool#program-verification

Stars325

Forks24

Last commit10 years ago

FSharpLintF#

A static analysis tool for F# that enforces coding conventions, detects code smells, and checks formatting rules.

#dotnet-tool#code-smells#msbuild

Stars324

Forks74

Last commit4 days ago

bodycloseGo

A static analysis tool for Go that checks whether HTTP response bodies are properly closed to enable TCP connection reuse.

#request#linter#http

Stars324

Forks39

Last commit4 months ago

goconstGo

A Go static analysis tool that finds repeated string and number literals that could be replaced by constants.

#developer-tools#linter#constants

Stars318

Forks21

Last commit13 days ago

SerilogAnalyzerC#

A Roslyn analyzer that detects common mistakes and enforces best practices in Serilog logging code.

#analyzer#csharp#visual-studio

Stars314

Forks31

Last commit2 years ago

De MorganTypeScript

An ESLint plugin that enforces logical consistency by transforming negated boolean expressions using De Morgan's laws.

#developer-tools#boolean-logic#typescript

Stars314

Forks2

Last commit24 days ago

arrow functionsJavaScript

ESLint plugin providing rules to enforce readable and proper arrow function definitions.

#concise-object-return#developer-tools#name-inference

Stars311

Forks14

Last commit1 year ago

spark-2014Ada

A programming language and verification toolset for engineering high-reliability, safety-critical, and secure applications.

#programming-language#safety-critical#software-verification

Stars311

Forks44

Last commit4 days ago

eslint-plugin-vuejs-accessibilityTypeScript

An ESLint plugin for checking accessibility rules in Vue.js single-file components.

#hacktoberfest#a11y-lint#a11y

Stars310

Forks30

Last commit1 month ago

SheriffTypeScript

A zero-dependency tool to enforce module boundaries and dependency rules in TypeScript projects.

#modularization#module-boundaries#architecture-enforcement

Stars307

Forks29

Last commit7 days ago

micropython-stubsPython

A collection of over 3,000 stub files for MicroPython ports and boards to enable code completion, static type checking, and faster development.

#developer-tools#micropython#type-stubs

Stars306

Forks30

Last commit4 days ago

OwiOCaml

An automatic bug-finding tool for C, C++, Go, Rust, and Zig using WebAssembly-level symbolic execution.

#multi-language#concolic-execution#webassembly

Stars306

Forks41

Last commit6 days ago

MDXTypeScript

ESLint parser and plugin for linting MDX files, including JavaScript/TypeScript code and markdown syntax.

#eslint-mdx#vscode-extension#code-quality

Stars298

Forks35

Last commit8 days ago

JavaSymbolSolverJava

A Java symbol solver that resolves type references and declarations in Java code by analyzing JavaParser ASTs.

#ast-analysis#semantic-analysis#java-parser

Stars296

Forks76

Last commit8 years ago

Abstract Syntax Tree BuilderPascal

A library that parses Delphi source code to generate abstract syntax trees for analysis and tooling.

#xml-output#free-pascal#syntax-tree

Stars296

Forks128

Last commit4 months ago

excellent_migrationsElixir

An Elixir tool that analyzes database migrations to detect potentially dangerous or destructive operations.

#elixir#devops#ecto

Stars290

Forks42

Last commit3 months ago

PreviousPage 13 of 19

Related Tags

Community-curated · Updated weekly · 100% open source

Found a gem we're missing?

Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.

Submit a project Star on GitHub