Mirror kept for legacy. Moved to https://github.com/llvm/llvm-project
-
Updated
Apr 23, 2020 - C++
Mirror kept for legacy. Moved to https://github.com/llvm/llvm-project
PHP Static Analysis Tool - discover bugs in your code without running it!
☕ SonarSource Static Analyzer for Java Code Quality and Security
Static Value-Flow Analysis Framework for Source Code
CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy
PHPMD is a spin-off project of PHP Depend and aims to be a PHP equivalent of the well known Java tool PMD. PHPMD can be seen as an user friendly frontend application for the raw metrics stream measured by PHP Depend.
Beautiful and understandable static analysis tool for PHP
BinAbsInspector: Vulnerability Scanner for Binaries
Code analyzer for C# and VB.NET projects
EMBA - The firmware security analyzer
SonarSource Static Analyzer for JavaScript and TypeScript
☕️ PMD Plugin for SonarQube
[LLVM Static Slicer] Various program analyses, construction of dependence graphs and program slicing of LLVM bitcode.
Static program analysis for TIP
A Static Code Analyzer for PHP (a PhpStorm/Idea Plugin)
cwe_checker finds vulnerable patterns in binary executables
Doctrine extensions for PHPStan
Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Ful…
njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.
Add a description, image, and links to the static-analyzer topic page so that developers can more easily learn about it.
To associate your repository with the static-analyzer topic, visit your repo's landing page and select "manage topics."