security-code-scan
SonarJava
security-code-scan | SonarJava | |
---|---|---|
2 | - | |
918 | 1,088 | |
1.3% | 0.4% | |
0.0 | 9.6 | |
6 months ago | 1 day ago | |
C# | Java | |
GNU Lesser General Public License v3.0 only | GNU Lesser General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
security-code-scan
-
Top 12 Cloud Security Tools for 2021
4. Security code scan
-
F# with C#
Ah. So we're reaching the limits of my knowledge here, but F# was bootstrapped (written in itself) in 2006, which predates Roslyn (C#'s bootstrapping) by about ~5 years. Bootstrapping makes building code analysis tools/APIs easier. Unfortunately the F# Compiler Service and Roslyn are incompatible, and tools built in Roslyn do not work for F#. (This isn't the first time C# has taken ideas from F# but broke compatibility... Task vs Async... but I digress.) These tools include things like Security Code Scan, which I had in mind when I wrote the OP. Typically when projects say "For C# and VB.NET" they're using Roslyn (which supports VB.NET). Otherwise if they supported C#, VB.NET, and F#... they'd just say they do all of dotnet - no need to specify 2/3 languages. Microsoft's own Edit and Continue documentation follows this trend of specifying C# and VB.NET, but excluding F#.
SonarJava
We haven't tracked posts mentioning SonarJava yet.
Tracking mentions began in Dec 2020.
What are some alternatives?
AlbionOnline-StatisticsAnalysis - A tool with many features for the game Albion Online
Spotbugs - SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.
Phishious - An open-source Secure Email Gateway (SEG) evaluation toolkit designed for red-teamers.
PMD - An extensible multilanguage static code analyzer.
Inventory_Kamera - Scans Genshin Impact characters, artifacts, and weapons from the game window into a JSON file.
Checkstyle - Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
PeachPie - PeachPie - the PHP compiler and runtime for .NET and .NET Core
infer - A static analyzer for Java, C, C++, and Objective-C
node-hp-scan-to - Allow to send scan from device to computer for some HP All-in-One Printers - Scan to computer
SonarQube - Continuous Inspection
cyclonedx-bom-repo-server - A BOM repository server for distributing CycloneDX BOMs
FindBugs - The new home of the FindBugs project