ShellCheck, a static analysis tool for shell scripts
-
Updated
Nov 14, 2020 - Haskell
#
static-analysis
Here are 1,041 public repositories matching this topic...
A static analyzer for Java, C, C++, and Objective-C
-
Updated
Nov 26, 2020 - OCaml
A tool to automatically fix PHP Coding Standards issues
-
Updated
Nov 27, 2020 - PHP
PHP Static Analysis Tool - discover bugs in your code without running it!
-
Updated
Nov 27, 2020 - PHP
PHP_CodeSniffer tokenizes PHP files and detects violations of a defined set of coding standards.
-
Updated
Nov 28, 2020 - PHP
A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.
static-code-analysis
linter
static-analysis
awesome-list
code-quality
static-analyzers
hacktoberfest
sast
-
Updated
Nov 27, 2020 - Rust
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
python
rest
static-analysis
apk
owasp
dynamic-analysis
web-security
ipa
malware-analysis
mobsf
android-security
mobile-security
windows-mobile-security
ios-security
mobile-security-framework
api-testing
cwe
devsecops
cvssv2
runtime-security
-
Updated
Nov 24, 2020 - Python
Vulnerability Static Analysis for Containers
-
Updated
Nov 27, 2020 - Go
Defund the Police.
list
awesome
static-analysis
chinese
dynamic-analysis
awesome-list
malware-analysis
chinese-translation
malware-research
threat-sharing
threatintel
malware-samples
analysis-framework
automated-analysis
network-traffic
threat-intelligence
domain-analysis
malware-collection
drop-ice
-
Updated
Oct 11, 2020
A static analysis security vulnerability scanner for Ruby on Rails applications
ruby
rails
security
security-audit
static-analysis
security-vulnerability
vulnerabilities
brakeman
security-tools
-
Updated
Nov 28, 2020 - Ruby
-
Updated
Oct 26, 2020 - TypeScript
Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
-
Updated
Nov 28, 2020 - Java
Performant type-checking for python.
python
security
typechecker
static-analysis
ocaml
control-flow-analysis
code-quality
program-analysis
taint-analysis
abstract-interpretation
type-check
-
Updated
Nov 21, 2020 - OCaml
Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
-
Updated
Nov 27, 2020 - PHP
Awesome autocompletion, static analysis and refactoring library for python
-
Updated
Oct 24, 2020 - Python
Golang security checker
-
Updated
Nov 2, 2020 - Go
Useful CMake Examples
unit-testing
cmake
tutorial
cpp
catch
boost
static-analysis
clang
cpack
cppcheck
clang-format
google-test
ctest
-
Updated
Jul 22, 2020 - CMake
A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.
detection
static-analysis
security-scanner
security-tools
software-characterization
application-inspector
-
Updated
Nov 26, 2020 - C#
A static code analysis tool for the Elixir language with a focus on code consistency and teaching.
-
Updated
Nov 27, 2020 - Elixir
A static analysis tool for finding errors in PHP applications
-
Updated
Nov 28, 2020 - PHP
Staticcheck - The advanced Go linter
-
Updated
Nov 28, 2020 - Go
Code smell detector for Ruby
-
Updated
Nov 25, 2020 - Ruby
FloEdelmann
commented
Oct 6, 2020
Please describe what the rule should do:
Since Vue v2.1.0, Vue.nextTick and vm.$nextTick return a Promise if no callback is provided. So both of the following are valid:
Vue.nextTick(callback)Vue.nextTick().then()/await Vue.nextTick()
Or inside components:
this.$nextTick(callback)
static analysis of C/C++ code
-
Updated
Nov 28, 2020 - C++
adangel
commented
Oct 29, 2020
Affects PMD Version: 6.30.0-SNAPSHOT
Rule: JUnitAssertionsShouldIncludeMessage
Description:
Code Sample demonstrating the issue:
https://chunk.io/pmd/fc7db65b2c6a46eca4c9a0c3012482e2/diff/spring-framewo
-
Updated
Nov 21, 2020 - Kotlin
Improve this page
Add a description, image, and links to the static-analysis topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the static-analysis topic, visit your repo's landing page and select "manage topics."
Add 8.7 and 8.8 for android and ios: show how you can delay the attacker or report tampering to the backend as a response to a tamper detected
8.7: The app implements multiple mechanisms in each defense category (8.1 to 8.6). Note that resiliency scales with the amount, diversity of the originality of the mechanisms used.
8.8: The detection mechanisms trigger responses of different types, includ