Your projects are multi-language. So is SonarQube analysis. Find Bugs, Vulnerabilities, Security Hotspots, and Code Smells so you can release quality code every time. Get started analyzing your projects today for free. Learn more →
Top 5 OCaml Static Analysis Projects
-
I notice there isn't fbinfer. It's pretty cool, and is used for this library.
-
semgrep
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Project mention: returntocorp/semgrep: Lightweight static analysis for many languages. Find bug variants with patterns that look like source code. | reddit.com/r/u_grouvi | 2023-01-10 -
InfluxDB
Build time-series-based applications quickly and at scale.. InfluxDB is the Time Series Platform where developers build real-time applications for analytics, IoT and cloud-native services. Easy to start, it is available in the cloud or on-premises.
-
Python now has an optional type system and if you add one of them such as mypy or pyre to your CI process and you can configure GitHub to refuse the pull request until types are added you can make it somewhat strongly typed.
If you have a preexisting codebase I believe the way you can convert it is to add the types that you know on commits and eventually you will have enough types that adding the missing ones should be easy. For the missing ones Any is a good choice.
https://pyre-check.org and https://github.com/python/mypy are popular.
-
Project mention: Any standard algorithms for parsing (disassembling) machine code? | reddit.com/r/compsci | 2022-05-13
BAP (https://github.com/binaryanalysisplatform/bap), angr (https://angr.io/) and others already do what you're asking for as more purpose-built solutions for dynamic analysis. Angr specifically in python.
-
-
SonarQube
Static code analysis for 29 languages.. Your projects are multi-language. So is SonarQube analysis. Find Bugs, Vulnerabilities, Security Hotspots, and Code Smells so you can release quality code every time. Get started analyzing your projects today for free.
OCaml Static Analysis related posts
- returntocorp/semgrep: Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
- A quick look at free C++ static analysis tools
- silly guy
- OCaml 5.0 Multicore is out
- Do you SecDevOps?
- I wrote my own “proper” programming language
- Static Program Analysis
-
A note from our sponsor - SonarQube
www.sonarqube.org | 1 Feb 2023
Index
What are some of the best open-source Static Analysis projects in OCaml? This list will help you:
Project | Stars | |
---|---|---|
1 | infer | 13,792 |
2 | semgrep | 7,639 |
3 | pyre-check | 6,208 |
4 | bap | 1,771 |
5 | bolt | 415 |