A tool for static analysis to look for bugs in Java code. steady ⚠️ — Analyses your Java applications for open-source dependencies with known vulnerabilities, using both static analysis and testing to …

Infer is a static analysis tool for Java, C++, Objective-C, and C. Infer is written in OCaml.

2 days ago · Static code analysis Static program analysis (or static analysis) is the analysis of computer programs performed without executing them, in contrast with dynamic program analysis, which is …

A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more. - d2s/awesome-static-analysis

Feb 23, 2025 · Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but …

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to …

Code scanning at ludicrous speed. Semgrep is a fast, open-source, static analysis tool that searches code, finds bugs, and enforces secure guardrails and coding standards. Semgrep supports 30+ …

Awesome static analysis Static program analysis is the analysis of computer software that is performed without actually executing programs (analysis performed on executing programs is known as …

Static program analysis is the analysis of computer software that is performed without actually executing programs — Wikipedia This is a collection of static analysis tools and code quality checkers. Pull …

Static program analysis is the analysis of computer software that is performed without actually executing programs — Wikipedia This is a collection of static analysis tools and code quality checkers. Pull …