SaaSHub helps you find the best software and product alternatives Learn more →
Top 10 Go static-code-analysis Projects
-
reviewdog
🐶 Automated code review tool integrated with any code analysis tools regardless of programming language
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
datree
Prevent Kubernetes misconfigurations from reaching production (again 😤 )! From code to cloud, Datree provides an E2E policy enforcement solution to run automatic checks for rule violations. See our docs: https://hub.datree.io
-
revive
🔥 ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint
-
kube-score
Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in your Kubernetes YAML and Charts. Static code analysis for Kubernetes.
-
bearer
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
nakedret
nakedret is a Go static analysis tool to find naked returns in functions greater than a specified function length.
For those unaware, gosec (and by extension golangci-lint) will warn about uses of `math/rand`
https://github.com/securego/gosec/blob/d3b2359ae29fe344f4df5...
I build a general converter from SARIF to Reviewdog Diagnostic Format (RDFormat), then use Reviewdog to give suggested code changes as well as the context of the changes for PR reviewing.
The v1.3.4 of revive, the fast, configurable, extensible, flexible, and beautiful linter for Go, is available.
Project mention: Show HN: Bearer Code Security Scanner Add Support for Java, PHP, Go, and Python | news.ycombinator.com | 2023-10-26
Project mention: Goboundcheck – Go linter validating slice/array bounds | news.ycombinator.com | 2023-06-29
Go static-code-analysis related posts
-
Is it necessary to maintain a logical layer on top of your codebase?
-
Is it necessary to maintain a logical layer in your code repository?
-
The missing logical layer in codebases. Easily deploy. Analysis friendly. Multi languages support.
-
The missing logical layer in codebases. Analysis friendly. Multi languages support.
-
The missing logical layer in codebases
-
Also a powerful source code metadata extractor for multiple languages
-
Source code history visualization with one line command (https://github.com/opensibyl/sibyl2)
-
A note from our sponsor - SaaSHub
www.saashub.com | 8 May 2024
Index
What are some of the best open-source static-code-analysis projects in Go? This list will help you:
Project | Stars | |
---|---|---|
1 | gosec | 7,468 |
2 | reviewdog | 7,385 |
3 | datree | 6,410 |
4 | revive | 4,626 |
5 | kube-score | 2,588 |
6 | bearer | 1,753 |
7 | Chronos | 419 |
8 | nakedret | 125 |
9 | sibyl2 | 43 |
10 | goboundcheck | 0 |
Sponsored