ShellCheck, a static analysis tool for shell scripts
-
Updated
on Mar 8, 2021 - Haskell
#
static-analysis
Here are 1,105 public repositories matching this topic...
A static analyzer for Java, C, C++, and Objective-C
-
Updated
on Mar 9, 2021 - OCaml
A tool to automatically fix PHP Coding Standards issues
-
Updated
on Mar 8, 2021 - PHP
PHP Static Analysis Tool - discover bugs in your code without running it!
-
Updated
on Mar 9, 2021 - PHP
PHP_CodeSniffer tokenizes PHP files and detects violations of a defined set of coding standards.
-
Updated
on Mar 7, 2021 - PHP
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
python
rest
static-analysis
apk
owasp
dynamic-analysis
web-security
malware-analysis
mobsf
android-security
mobile-security
windows-mobile-security
ios-security
mobile-security-framework
api-testing
cwe
devsecops
runtime-security
mstg
masvs
-
Updated
on Mar 8, 2021 - Python
A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.
-
Updated
on Mar 8, 2021 - Rust
Vulnerability Static Analysis for Containers
-
Updated
on Mar 5, 2021 - Go
Defund the Police.
list
awesome
static-analysis
chinese
dynamic-analysis
awesome-list
malware-analysis
chinese-translation
malware-research
threat-sharing
threatintel
malware-samples
analysis-framework
automated-analysis
network-traffic
threat-intelligence
domain-analysis
malware-collection
drop-ice
-
Updated
on Feb 1, 2021
A static analysis security vulnerability scanner for Ruby on Rails applications
ruby
rails
security
security-audit
static-analysis
security-vulnerability
vulnerabilities
brakeman
security-tools
-
Updated
on Mar 8, 2021 - Ruby
-
Updated
on Oct 26, 2020 - TypeScript
Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
-
Updated
on Mar 9, 2021 - Java
Performant type-checking for python.
python
security
typechecker
static-analysis
ocaml
control-flow-analysis
code-quality
program-analysis
taint-analysis
abstract-interpretation
type-check
-
Updated
on Mar 9, 2021 - OCaml
Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
-
Updated
on Feb 28, 2021 - PHP
Awesome autocompletion, static analysis and refactoring library for python
-
Updated
on Feb 26, 2021 - Python
Useful CMake Examples
unit-testing
cmake
tutorial
cpp
catch
boost
static-analysis
clang
cpack
cppcheck
clang-format
google-test
ctest
-
Updated
on Jan 17, 2021 - CMake
Golang security checker
-
Updated
on Mar 4, 2021 - Go
A static analysis tool for finding errors in PHP applications
-
Updated
on Mar 9, 2021 - PHP
A static code analysis tool for the Elixir language with a focus on code consistency and teaching.
-
Updated
on Mar 8, 2021 - Elixir
A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.
detection
static-analysis
security-scanner
security-tools
software-characterization
application-inspector
-
Updated
on Dec 12, 2020 - C#
Staticcheck - The advanced Go linter
-
Updated
on Mar 9, 2021 - Go
Code smell detector for Ruby
-
Updated
on Mar 5, 2021 - Ruby
static analysis of C/C++ code
-
Updated
on Mar 8, 2021 - C++
Open
vue/no-v-text
inker
commented
on Feb 8, 2021
brendongo
commented
on Feb 24, 2021
Describe the bug
In Typescript 4.0 the following is valid:
try {
// ...
}
catch (e: unknown) {
// error!
// Property 'toUpperCase' does not exist on type 'unknown'.
console.log(e.toUpperCase());
if (typeof e === "string") {
// works!
// We've narrowed 'e' down to the type 'string'.
console.log(e.toUpperCase());
}
}
adangel
commented
on Oct 29, 2020
Affects PMD Version: 6.30.0-SNAPSHOT
Rule:UseTryWithResources
Description:
Code Sample demonstrating the issue:
https://chunk.io/pmd/fc7db65b2c6a46eca4c9a0c3012482e2/diff/checkstyle/index.html#A360
import jImprove this page
Add a description, image, and links to the static-analysis topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the static-analysis topic, visit your repo's landing page and select "manage topics."
Add 8.7 and 8.8 for android and ios: show how you can delay the attacker or report tampering to the backend as a response to a tamper detected
8.7: The app implements multiple mechanisms in each defense category (8.1 to 8.6). Note that resiliency scales with the amount, diversity of the originality of the mechanisms used.
8.8: The detection mechanisms trigger responses of different types, includ