ShellCheck, a static analysis tool for shell scripts
-
Updated
Sep 5, 2021 - Haskell
#
static-analysis
Here are 1,221 public repositories matching this topic...
A static analyzer for Java, C, C++, and Objective-C
-
Updated
Sep 10, 2021 - OCaml
A Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)
android
java
bytecode
compiler
jsp
static-analysis
java-decompiler
decompiler
apk
war
smali
bytecode-viewer
dex2jar
fernflower
cfr
baksmali
procyon
recompiler
krakatau
-
Updated
Sep 11, 2021 - Java
A tool to automatically fix PHP Coding Standards issues
-
Updated
Sep 12, 2021 - PHP
PHP Static Analysis Tool - discover bugs in your code without running it!
-
Updated
Sep 12, 2021 - PHP
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
python
rest
static-analysis
apk
owasp
dynamic-analysis
web-security
malware-analysis
mobsf
android-security
mobile-security
windows-mobile-security
ios-security
mobile-security-framework
api-testing
cwe
devsecops
runtime-security
mstg
masvs
-
Updated
Sep 8, 2021 - Python
A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.
-
Updated
Sep 1, 2021 - Rust
PHP_CodeSniffer tokenizes PHP files and detects violations of a defined set of coding standards.
-
Updated
Sep 11, 2021 - PHP
Vulnerability Static Analysis for Containers
-
Updated
Sep 10, 2021 - Go
Defund the Police.
list
awesome
static-analysis
chinese
dynamic-analysis
awesome-list
malware-analysis
chinese-translation
malware-research
threat-sharing
threatintel
malware-samples
analysis-framework
automated-analysis
network-traffic
threat-intelligence
domain-analysis
malware-collection
drop-ice
-
Updated
Aug 29, 2021
Useful CMake Examples
unit-testing
cmake
tutorial
cpp
catch
boost
static-analysis
clang
cpack
cppcheck
clang-format
google-test
ctest
-
Updated
Sep 10, 2021 - CMake
Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
-
Updated
Sep 12, 2021 - Java
A static analysis security vulnerability scanner for Ruby on Rails applications
ruby
rails
security
security-audit
static-analysis
security-vulnerability
vulnerabilities
brakeman
security-tools
-
Updated
Aug 24, 2021 - Ruby
-
Updated
Mar 25, 2021 - TypeScript
Dockerfile linter, validate inline bash, written in Haskell
docker
dockerfile
haskell
linter
static-analysis
appveyor
travis
shellcheck
ignore-rules
dockerfile-linter
-
Updated
Sep 9, 2021 - Haskell
Performant type-checking for python.
python
security
typechecker
static-analysis
ocaml
control-flow-analysis
code-quality
program-analysis
taint-analysis
abstract-interpretation
type-check
-
Updated
Sep 11, 2021 - OCaml
Golang security checker
-
Updated
Sep 6, 2021 - Go
Sjord
commented
Aug 31, 2021
Describe the bug
I expect metavariables between backticks to work in JavaScript:
$ semgrep --lang js -e '`$A`'
ran 1 rules on 1 files: 0 findings
I expect this to match the following:
`test`;
Priority
How important is this to you?
- P2: annoying but not blocking me
Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
-
Updated
Sep 11, 2021 - PHP
Awesome autocompletion, static analysis and refactoring library for python
-
Updated
Sep 2, 2021 - Python
Open
Argument 1 of `get_browser()` cannot be null, null value provided to parameter with type string
4
Jeckerson
commented
Sep 6, 2021
According to the PHP docs of function get_browser() it is possible to pass null value to first argument.
You can bypass this parameter with a null value.
https://www.php.net/manual/en/function.get-browser.php
Code:
$browser = get_browser(null, true);
Doarakko
commented
May 15, 2021
Many repositories need to fix, so please help if you like.
If you could help, it would be helpful if you could comment before starting the work not to overlapping.
Fix example
Run exit command after lint.
echo '::group:: Running golangci-lint with reviewdog 🐶 ...'
goStaticcheck - The advanced Go linter
-
Updated
Sep 12, 2021 - Go
A static code analysis tool for the Elixir language with a focus on code consistency and teaching.
-
Updated
Sep 11, 2021 - Elixir
A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.
detection
static-analysis
security-scanner
security-tools
software-characterization
application-inspector
-
Updated
Sep 6, 2021 - C#
static analysis of C/C++ code
-
Updated
Sep 12, 2021 - C++
Improve this page
Add a description, image, and links to the static-analysis topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the static-analysis topic, visit your repo's landing page and select "manage topics."
App Attest allows your app to attach a hardware-backed assertion as a part of the request. Your server can use assertion to verify the request came from your genuine app, on a genuine Apple device.
https://developer.apple.com/videos/play/wwdc2021/10244/
https://developer.apple.com/documentation/devicecheck/assessing_fraud_risk
https://developer.apple.com/documentation/bundleresources/entit