GitHub Release Tracker

03/19

8

securego/gosec v2.25.0

Inspects Go source code for security issues by scanning the AST and SSA representations.

Go 8723☆ 3531d old #golang #security #go #static-analysis #security-tools

03/18

8

vercel/Node File Trace 1.4.0

Node.js dependency tracer that lists all runtime files and node_modules required by an application.

JavaScript 1596☆ 2449d old #javascript #static-analysis

03/17

8

semgrep/Semgrep v1.156.0

Fast static analysis tool that searches code for bugs and enforces coding standards.

OCaml 14493☆ 2288d old #golang #java #static-code-analysis #go #static-analysis

03/11

8

semgrep/Semgrep v1.155.0

Fast static analysis tool that searches code for bugs and enforces coding standards.

OCaml 14493☆ 2288d old #golang #java #static-code-analysis #go #static-analysis

03/06

8

mgechev/revive v1.15.0

Fast and configurable linter for Go with support for custom rules and strict presets.

Go 5444☆ 3174d old #golang #linter #go #static-analysis #golint

03/04

8

semgrep/Semgrep v1.154.0

Fast static analysis tool that searches code for bugs and enforces coding standards.

OCaml 14493☆ 2288d old #golang #java #static-code-analysis #go #static-analysis

02/27

8

securego/gosec v2.24.0

Inspects Go source code for security issues by scanning the AST and SSA representations.

Go 8723☆ 3531d old #golang #security #go #static-analysis #security-tools

02/25

8

semgrep/Semgrep v1.153.0

Fast static analysis tool that searches code for bugs and enforces coding standards.

OCaml 14493☆ 2288d old #golang #java #static-code-analysis #go #static-analysis

02/18

8

semgrep/Semgrep v1.152.0

Fast static analysis tool that searches code for bugs and enforces coding standards.

OCaml 14493☆ 2288d old #golang #java #static-code-analysis #go #static-analysis

03/09

7

anchore/Syft v1.42.2

CLI tool and library for generating Software Bill of Materials from container images and filesystems.

Go 8506☆ 2139d old #golang #docker #go #containers #static-analysis

03/05

7

sverweij/Dependency cruiser v17.3.9

Validate and visualize project dependencies with customizable rules.

JavaScript 6435☆ 3393d old #javascript #typescript #static-analysis #dependency-analysis #dependency-cruiser

03/01

7

securego/gosec v2.24.7

Inspects Go source code for security issues by scanning the AST and SSA representations.

Go 8723☆ 3531d old #golang #security #go #static-analysis #security-tools

02/28

7

securego/gosec v2.24.6

Inspects Go source code for security issues by scanning the AST and SSA representations.

Go 8723☆ 3531d old #golang #security #go #static-analysis #security-tools

02/26

7

presidentbeef/Brakeman v8.0.3

Static analysis tool checking Ruby on Rails applications for security vulnerabilities.

Ruby 7200☆ 5665d old #ruby #rails #security #static-analysis #vulnerabilities

02/18

7

CodeBoarding/CodeBoarding v0.9.0

LLM-enhanced static-analysis tool that generates interactive, high-level diagrams of codebases to aid onboarding and comprehension.

Python 1103☆ 344d old #python #static-analysis #llms #agents #aiagentic

02/18

7

anchore/Syft v1.42.1

CLI tool and library for generating Software Bill of Materials from container images and filesystems.

Go 8506☆ 2139d old #golang #docker #go #containers #static-analysis

03/16

6

CodeBoarding/CodeBoarding v0.9.5

LLM-enhanced static-analysis tool that generates interactive, high-level diagrams of codebases to aid onboarding and comprehension.

Python 1103☆ 344d old #python #static-analysis #llms #agents #aiagentic

03/14

6

CodeBoarding/CodeBoarding v0.9.4

LLM-enhanced static-analysis tool that generates interactive, high-level diagrams of codebases to aid onboarding and comprehension.

Python 1103☆ 344d old #python #static-analysis #llms #agents #aiagentic

03/12

6

CodeBoarding/CodeBoarding v0.9.3

LLM-enhanced static-analysis tool that generates interactive, high-level diagrams of codebases to aid onboarding and comprehension.

Python 1103☆ 344d old #python #static-analysis #llms #agents #aiagentic

02/23

6

CodeBoarding/CodeBoarding v0.9.2

LLM-enhanced static-analysis tool that generates interactive, high-level diagrams of codebases to aid onboarding and comprehension.

Python 1103☆ 344d old #python #static-analysis #llms #agents #aiagentic

02/23

6

vercel/Node File Trace 1.3.2

Node.js dependency tracer that lists all runtime files and node_modules required by an application.

JavaScript 1596☆ 2449d old #javascript #static-analysis

03/09

5

anchore/Grant v0.6.3

CLI and Go library for scanning and enforcing software licenses in container images, SBOMs, and filesystems.

Go 147☆ 1191d old #golang #go #static-analysis #compliance #sbom

03/02

5

quay/Claircore v1.5.50

Go modules for scanning container layers for installed packages and reporting discovered vulnerabilities.

Go 150☆ 2372d old #golang #hacktoberfest #go #static-analysis

02/18

5

anchore/Grant v0.6.2

CLI and Go library for scanning and enforcing software licenses in container images, SBOMs, and filesystems.

Go 147☆ 1191d old #golang #go #static-analysis #compliance #sbom

03/17

4

antoine-coulon/skott skott@0.35.8

Minimalist developer tool to generate and visualize directed graphs of JavaScript/TypeScript project dependencies with metadata and circular dependency detection.

TypeScript 841☆ 1356d old #javascript #nodejs #node #typescript #visualization

03/17

4

mcandre/stank v0.0.42

Recursively finds POSIX-derived shell scripts and provides their paths for external linters.

Go 57☆ 3143d old #golang #go #static-analysis #shell-scripts

03/16

4

JetBrains/Qodana v2025.3.2

Code quality monitoring tool that identifies and suggests fixes for bugs, security vulnerabilities, and code duplications.

JavaScript 301☆ 1929d old #javascript #static-analysis #github-actions #actions #code-quality

03/16

3

SonarSource/SonarJS 12.1.0.39434

Static code analyzer for JavaScript, TypeScript, and CSS providing code quality, security rules, and metrics.

TypeScript 1207☆ 5056d old #javascript #static-code-analysis #typescript #static-analysis #sonarqube

02/20

3

SonarSource/SonarJS 12.0.0.38664

Static code analyzer for JavaScript, TypeScript, and CSS providing code quality, security rules, and metrics.

TypeScript 1207☆ 5056d old #javascript #static-code-analysis #typescript #static-analysis #sonarqube

03/19	8	securego/gosec v2.25.0 Inspects Go source code for security issues by scanning the AST and SSA representations. Go 8723☆ 3531d old #golang #security #go #static-analysis #security-tools
03/18	8	vercel/Node File Trace 1.4.0 Node.js dependency tracer that lists all runtime files and node_modules required by an application. JavaScript 1596☆ 2449d old #javascript #static-analysis
03/17	8	semgrep/Semgrep v1.156.0 Fast static analysis tool that searches code for bugs and enforces coding standards. OCaml 14493☆ 2288d old #golang #java #static-code-analysis #go #static-analysis
03/11	8	semgrep/Semgrep v1.155.0 Fast static analysis tool that searches code for bugs and enforces coding standards. OCaml 14493☆ 2288d old #golang #java #static-code-analysis #go #static-analysis
03/06	8	mgechev/revive v1.15.0 Fast and configurable linter for Go with support for custom rules and strict presets. Go 5444☆ 3174d old #golang #linter #go #static-analysis #golint
03/04	8	semgrep/Semgrep v1.154.0 Fast static analysis tool that searches code for bugs and enforces coding standards. OCaml 14493☆ 2288d old #golang #java #static-code-analysis #go #static-analysis
02/27	8	securego/gosec v2.24.0 Inspects Go source code for security issues by scanning the AST and SSA representations. Go 8723☆ 3531d old #golang #security #go #static-analysis #security-tools
02/25	8	semgrep/Semgrep v1.153.0 Fast static analysis tool that searches code for bugs and enforces coding standards. OCaml 14493☆ 2288d old #golang #java #static-code-analysis #go #static-analysis
02/18	8	semgrep/Semgrep v1.152.0 Fast static analysis tool that searches code for bugs and enforces coding standards. OCaml 14493☆ 2288d old #golang #java #static-code-analysis #go #static-analysis
03/09	7	anchore/Syft v1.42.2 CLI tool and library for generating Software Bill of Materials from container images and filesystems. Go 8506☆ 2139d old #golang #docker #go #containers #static-analysis
03/05	7	sverweij/Dependency cruiser v17.3.9 Validate and visualize project dependencies with customizable rules. JavaScript 6435☆ 3393d old #javascript #typescript #static-analysis #dependency-analysis #dependency-cruiser
03/01	7	securego/gosec v2.24.7 Inspects Go source code for security issues by scanning the AST and SSA representations. Go 8723☆ 3531d old #golang #security #go #static-analysis #security-tools
02/28	7	securego/gosec v2.24.6 Inspects Go source code for security issues by scanning the AST and SSA representations. Go 8723☆ 3531d old #golang #security #go #static-analysis #security-tools
02/26	7	presidentbeef/Brakeman v8.0.3 Static analysis tool checking Ruby on Rails applications for security vulnerabilities. Ruby 7200☆ 5665d old #ruby #rails #security #static-analysis #vulnerabilities
02/18	7	CodeBoarding/CodeBoarding v0.9.0 LLM-enhanced static-analysis tool that generates interactive, high-level diagrams of codebases to aid onboarding and comprehension. Python 1103☆ 344d old #python #static-analysis #llms #agents #aiagentic
02/18	7	anchore/Syft v1.42.1 CLI tool and library for generating Software Bill of Materials from container images and filesystems. Go 8506☆ 2139d old #golang #docker #go #containers #static-analysis
03/16	6	CodeBoarding/CodeBoarding v0.9.5 LLM-enhanced static-analysis tool that generates interactive, high-level diagrams of codebases to aid onboarding and comprehension. Python 1103☆ 344d old #python #static-analysis #llms #agents #aiagentic
03/14	6	CodeBoarding/CodeBoarding v0.9.4 LLM-enhanced static-analysis tool that generates interactive, high-level diagrams of codebases to aid onboarding and comprehension. Python 1103☆ 344d old #python #static-analysis #llms #agents #aiagentic
03/12	6	CodeBoarding/CodeBoarding v0.9.3 LLM-enhanced static-analysis tool that generates interactive, high-level diagrams of codebases to aid onboarding and comprehension. Python 1103☆ 344d old #python #static-analysis #llms #agents #aiagentic
02/23	6	CodeBoarding/CodeBoarding v0.9.2 LLM-enhanced static-analysis tool that generates interactive, high-level diagrams of codebases to aid onboarding and comprehension. Python 1103☆ 344d old #python #static-analysis #llms #agents #aiagentic
02/23	6	vercel/Node File Trace 1.3.2 Node.js dependency tracer that lists all runtime files and node_modules required by an application. JavaScript 1596☆ 2449d old #javascript #static-analysis
03/09	5	anchore/Grant v0.6.3 CLI and Go library for scanning and enforcing software licenses in container images, SBOMs, and filesystems. Go 147☆ 1191d old #golang #go #static-analysis #compliance #sbom
03/02	5	quay/Claircore v1.5.50 Go modules for scanning container layers for installed packages and reporting discovered vulnerabilities. Go 150☆ 2372d old #golang #hacktoberfest #go #static-analysis
02/18	5	anchore/Grant v0.6.2 CLI and Go library for scanning and enforcing software licenses in container images, SBOMs, and filesystems. Go 147☆ 1191d old #golang #go #static-analysis #compliance #sbom
03/17	4	antoine-coulon/skott skott@0.35.8 Minimalist developer tool to generate and visualize directed graphs of JavaScript/TypeScript project dependencies with metadata and circular dependency detection. TypeScript 841☆ 1356d old #javascript #nodejs #node #typescript #visualization
03/17	4	mcandre/stank v0.0.42 Recursively finds POSIX-derived shell scripts and provides their paths for external linters. Go 57☆ 3143d old #golang #go #static-analysis #shell-scripts
03/16	4	JetBrains/Qodana v2025.3.2 Code quality monitoring tool that identifies and suggests fixes for bugs, security vulnerabilities, and code duplications. JavaScript 301☆ 1929d old #javascript #static-analysis #github-actions #actions #code-quality
03/16	3	SonarSource/SonarJS 12.1.0.39434 Static code analyzer for JavaScript, TypeScript, and CSS providing code quality, security rules, and metrics. TypeScript 1207☆ 5056d old #javascript #static-code-analysis #typescript #static-analysis #sonarqube
02/20	3	SonarSource/SonarJS 12.0.0.38664 Static code analyzer for JavaScript, TypeScript, and CSS providing code quality, security rules, and metrics. TypeScript 1207☆ 5056d old #javascript #static-code-analysis #typescript #static-analysis #sonarqube