SaaSHub helps you find the best software and product alternatives Learn more →
Top 10 JavaScript Static Analysis Projects
-
Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
-
SurveyJS
Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App. With SurveyJS form UI libraries, you can build and style forms in a fully-integrated drag & drop form builder, render them in your JS app, and store form submission data in any backend, inc. PHP, ASP.NET Core, and Node.js.
-
dependency-cruiser
Validate and visualize dependencies. Your rules. JavaScript, TypeScript, CoffeeScript. ES6, CommonJS, AMD.
-
njsscan
njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
qodana-action
⚙️ Scan your Go, Java, Kotlin, PHP, Python, JavaScript, TypeScript, .NET projects at GitHub with Qodana. This repository contains Qodana for Azure, GitHub, CircleCI and Gradle
If it was me, I'd first run something like DIE on it (I have a few such programs installed)- https://github.com/horsicq/Detect-It-Easy
With dependency-cruiser, you can enforce which imports are allowed. This enables you to create an architecture fitness function that ensures your code continues to adhere to the initial design. You can also visualize your dependencies to gain a clearer understanding of your code's actual structure, allowing you to compare it with your mental model and make improvements where necessary.
Project mention: I made this AI programming assistant to generate diagrams for my code | /r/artificial | 2023-12-08Here's where you can try it out: https://useadrenaline.com
During next build, Next.js will use @vercel/nft to statically analyze import, require, and fs usage to determine all files that a page might load.
Project mention: Develop, test, and deploy your extensions for all popular CIs from a single codebase | dev.to | 2023-06-18This is a relatively short tutorial on how to develop, test, and deploy your CI extensions for GitHub Actions, Azure Pipelines, and CircleCI from a single monorepo and is based on the experience of creating the Qodana CI extensions.
JavaScript Static Analysis related posts
-
Constyble: CSS Complexity Linter
-
Taking Frontend Architecture Serious with dependency-cruiser
-
Visualisation tool
-
Hacking & Gaming :)
-
Launch HN: EdgeBit (YC W23) – live software vulnerability analysis
-
[AskJS] What ESLint rules do you use to achieve better isolation of components?
-
how to automatically run a script / yarn command before each dev hot-reload build
-
A note from our sponsor - SaaSHub
www.saashub.com | 8 May 2024
Index
What are some of the best open-source Static Analysis projects in JavaScript? This list will help you:
Project | Stars | |
---|---|---|
1 | Mobile-Security-Framework-MobSF | 16,355 |
2 | Detect-It-Easy | 6,628 |
3 | dependency-cruiser | 4,977 |
4 | eslint-plugin-vue | 4,371 |
5 | adrenaline | 3,711 |
6 | nft | 1,216 |
7 | njsscan | 346 |
8 | qodana-action | 247 |
9 | constyble | 101 |
10 | Umay | 44 |
Sponsored