static-analysis
| Date | Project Name | 🎉 | ? | Tags |
|---|---|---|---|---|
| 01/27 |
Grant v0.5.6
* [Grant v0.5.6](https://github.com/anchore/grant) – CLI and Go library for scanning and enforcing software licenses in container images, SBOMs, and filesystems.
CLI and Go library for scanning and enforcing software licenses in container images, SBOMs, and filesystems.
|
5
|
Go 133 ⭐1148 days old |
golang go static-analysis compliance sbom license |
| 01/27 |
Syft v1.41.0
* [Syft v1.41.0](https://github.com/anchore/syft) – CLI tool and library for generating Software Bill of Materials from container images and filesystems.
CLI tool and library for generating Software Bill of Materials from container images and filesystems.
|
8
|
Go 8280 ⭐2091 days old |
golang docker go containers static-analysis |
| 01/27 |
RubyCritic v5.0.0
* [RubyCritic v5.0.0](https://github.com/whitesmith/rubycritic) – Tool that provides a quality report for Ruby code by wrapping static analysis gems.
Tool that provides a quality report for Ruby code by wrapping static analysis gems.
|
9
|
Ruby 3460 ⭐4493 days old |
ruby best-practices static-analysis metrics quality-reporter |
| 01/26 |
Mobile Security Framework (MobSF) v4.4.5
* [Mobile Security Framework (MobSF) v4.4.5](https://github.com/MobSF/Mobile-Security-Framework-MobSF) – Automated framework for mobile application security testing, malware analysis, and privacy assessment.
Automated framework for mobile application security testing, malware analysis, and privacy assessment.
|
7
|
JavaScript 20267 ⭐4015 days old |
javascript static-analysis dynamic-analysis mobsf android-security mobile-security |
| 01/23 |
CodeBoarding v0.7.0
* [CodeBoarding v0.7.0](https://github.com/CodeBoarding/CodeBoarding) – LLM-enhanced static-analysis tool that generates interactive, high-level diagrams of codebases to aid onboarding and comprehension.
LLM-enhanced static-analysis tool that generates interactive, high-level diagrams of codebases to aid onboarding and comprehension.
|
7
|
Python 960 ⭐294 days old |
python static-analysis llms agents aiagentic explainability |
| 01/23 |
SonarJS 11.8.0.37897
* [SonarJS 11.8.0.37897](https://github.com/SonarSource/SonarJS) – Static code analyzer for JavaScript, TypeScript, and CSS providing code quality, security rules, and metrics.
Static code analyzer for JavaScript, TypeScript, and CSS providing code quality, security rules, and metrics.
|
3
|
TypeScript 1193 ⭐5005 days old |
javascript static-code-analysis typescript static-analysis sonarqube static-analyzer |
| 01/22 |
Dependency cruiser v17.3.7
* [Dependency cruiser v17.3.7](https://github.com/sverweij/dependency-cruiser) – Validate and visualize project dependencies with customizable rules.
Validate and visualize project dependencies with customizable rules.
|
7
|
JavaScript 6305 ⭐3351 days old |
javascript typescript static-analysis dependency-analysis dependency-cruiser |
| 01/21 |
Semgrep v1.149.0
* [Semgrep v1.149.0](https://github.com/semgrep/semgrep) – Fast static analysis tool that searches code for bugs and enforces coding standards.
Fast static analysis tool that searches code for bugs and enforces coding standards.
|
8
|
OCaml 13973 ⭐2237 days old |
golang java static-code-analysis go static-analysis sast ocaml |
| 01/21 |
Node File Trace 1.3.0
* [Node File Trace 1.3.0](https://github.com/vercel/nft) – Node.js dependency tracer that lists all runtime files and node_modules required by an application.
Node.js dependency tracer that lists all runtime files and node_modules required by an application.
|
8
|
JavaScript 1580 ⭐2393 days old |
javascript static-analysis |
| 01/19 |
skott 0.35.7
* [skott 0.35.7](https://github.com/antoine-coulon/skott) – Minimalist developer tool to generate and visualize directed graphs of JavaScript/TypeScript project dependencies with metadata and circular dependency detection.
Minimalist developer tool to generate and visualize directed graphs of JavaScript/TypeScript project dependencies with metadata and circular dependency detection.
|
6
|
TypeScript 824 ⭐1299 days old |
nodejs typescript visualization graph static-analysis tree |
| 01/16 |
DebtBomb v0.4.2
* [DebtBomb v0.4.2](https://github.com/jobin-404/debtbomb) – Cross-language technical-debt enforcement tool that scans comments for expiry-tagged debt and fails CI when they expire.
Cross-language technical-debt enforcement tool that scans comments for expiry-tagged debt and fails CI when they expire.
|
5
|
Go 74 ⭐8 days old |
go ci-cd static-analysis code-quality cli-tool maintainability |
| 01/15 |
Grant v0.5.5
* [Grant v0.5.5](https://github.com/anchore/grant) – CLI and Go library for scanning and enforcing software licenses in container images, SBOMs, and filesystems.
CLI and Go library for scanning and enforcing software licenses in container images, SBOMs, and filesystems.
|
5
|
Go 133 ⭐1148 days old |
golang go static-analysis compliance sbom license |
| 01/15 |
Syft v1.40.1
* [Syft v1.40.1](https://github.com/anchore/syft) – CLI tool and library for generating Software Bill of Materials from container images and filesystems.
CLI tool and library for generating Software Bill of Materials from container images and filesystems.
|
7
|
Go 8280 ⭐2091 days old |
golang docker go containers static-analysis |
| 01/15 |
Semgrep v1.148.0
* [Semgrep v1.148.0](https://github.com/semgrep/semgrep) – Fast static analysis tool that searches code for bugs and enforces coding standards.
Fast static analysis tool that searches code for bugs and enforces coding standards.
|
8
|
OCaml 13973 ⭐2237 days old |
golang java static-code-analysis go static-analysis sast ocaml |
| 01/14 |
CodeBoarding v0.6.1
* [CodeBoarding v0.6.1](https://github.com/CodeBoarding/CodeBoarding) – LLM-enhanced static-analysis tool that generates interactive, high-level diagrams of codebases to aid onboarding and comprehension.
LLM-enhanced static-analysis tool that generates interactive, high-level diagrams of codebases to aid onboarding and comprehension.
|
6
|
Python 960 ⭐294 days old |
python static-analysis llms agents aiagentic explainability |