ShellCheck, a static analysis tool for shell scripts
-
Updated
Jun 6, 2021 - Haskell
#
static-analysis
Here are 1,162 public repositories matching this topic...
A static analyzer for Java, C, C++, and Objective-C
-
Updated
Jun 5, 2021 - HTML
A tool to automatically fix PHP Coding Standards issues
-
Updated
Jun 7, 2021 - PHP
PHP Static Analysis Tool - discover bugs in your code without running it!
-
Updated
Jun 7, 2021 - PHP
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
python
rest
static-analysis
apk
owasp
dynamic-analysis
web-security
malware-analysis
mobsf
android-security
mobile-security
windows-mobile-security
ios-security
mobile-security-framework
api-testing
cwe
devsecops
runtime-security
mstg
masvs
-
Updated
Jun 5, 2021 - Python
A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.
-
Updated
Jun 7, 2021 - Rust
PHP_CodeSniffer tokenizes PHP files and detects violations of a defined set of coding standards.
-
Updated
Jun 3, 2021 - PHP
Vulnerability Static Analysis for Containers
-
Updated
Jun 4, 2021 - Go
Defund the Police.
list
awesome
static-analysis
chinese
dynamic-analysis
awesome-list
malware-analysis
chinese-translation
malware-research
threat-sharing
threatintel
malware-samples
analysis-framework
automated-analysis
network-traffic
threat-intelligence
domain-analysis
malware-collection
drop-ice
-
Updated
Mar 18, 2021
A static analysis security vulnerability scanner for Ruby on Rails applications
ruby
rails
security
security-audit
static-analysis
security-vulnerability
vulnerabilities
brakeman
security-tools
-
Updated
Jun 7, 2021 - Ruby
Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
-
Updated
Jun 7, 2021 - Java
-
Updated
Mar 25, 2021 - TypeScript
Useful CMake Examples
unit-testing
cmake
tutorial
cpp
catch
boost
static-analysis
clang
cpack
cppcheck
clang-format
google-test
ctest
-
Updated
Mar 18, 2021 - CMake
Dockerfile linter, validate inline bash, written in Haskell
docker
dockerfile
haskell
linter
static-analysis
appveyor
travis
shellcheck
ignore-rules
dockerfile-linter
-
Updated
May 31, 2021 - Haskell
Performant type-checking for python.
python
security
typechecker
static-analysis
ocaml
control-flow-analysis
code-quality
program-analysis
taint-analysis
abstract-interpretation
type-check
-
Updated
Jun 5, 2021 - OCaml
Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
-
Updated
Jun 6, 2021 - PHP
Awesome autocompletion, static analysis and refactoring library for python
-
Updated
May 26, 2021 - Python
Golang security checker
-
Updated
Jun 7, 2021 - Go
chmccreery
commented
May 10, 2021
Describe the bug
If a user inputs an autofix that is multiple lines, all lines after the first are indented on an absolute basis rather than relative to the first line.
To Reproduce
semgrep --config https://semgrep.dev/s/chmccreery:autofix-multiline --autofix --disable-nosem --skip-unknown-extensions --dryrun
^ Run the above command in /semgrep repository (or create a test repo
A static analysis tool for finding errors in PHP applications
-
Updated
Jun 7, 2021 - PHP
Staticcheck - The advanced Go linter
-
Updated
Jun 2, 2021 - Go
A static code analysis tool for the Elixir language with a focus on code consistency and teaching.
-
Updated
Jun 4, 2021 - Elixir
A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.
detection
static-analysis
security-scanner
security-tools
software-characterization
application-inspector
-
Updated
Jun 3, 2021 - C#
Code smell detector for Ruby
-
Updated
May 14, 2021 - Ruby
static analysis of C/C++ code
-
Updated
Jun 7, 2021 - C++
-
Updated
Jun 2, 2021 - Kotlin
Improve this page
Add a description, image, and links to the static-analysis topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the static-analysis topic, visit your repo's landing page and select "manage topics."
Add 8.7 and 8.8 for android and ios: show how you can delay the attacker or report tampering to the backend as a response to a tamper detected
8.7: The app implements multiple mechanisms in each defense category (8.1 to 8.6). Note that resiliency scales with the amount, diversity of the originality of the mechanisms used.
8.8: The detection mechanisms trigger responses of different types, includ