Python static-code-analysis

Open-source Python projects categorized as static-code-analysis

Top 20 Python static-code-analysis Projects

static-code-analysis
  1. bandit

    Bandit is a tool designed to find common security issues in Python code.

    Project mention: 🔒 Bandit: Python Static Application Security Testing Guide | dev.to | 2025-04-23

    Bandit Documentation: https://bandit.readthedocs.io OWASP Source Code Analysis Tools: https://owasp.org/www-community/Source_Code_Analysis_Tools Python Security Best Practices: https://docs.python.org/3/library/security.html GitHub Actions: https://docs.github.com/en/actions

  2. InfluxDB

    InfluxDB – Built for High-Performance Time Series Workloads. InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.

    InfluxDB logo
  3. Pylint

    It's not just a linter that annoys you!

    Project mention: From Vibe Coder to AI-Assisted Architect | dev.to | 2025-05-07

    I noticed this issue only after running a linter. Sometimes we’re not familiar with the tricky edge cases or conventions of a particular language. A convenient way to catch and fix such issues — including formatting, styling, and even some security problems — is to use linters. For example, you can use golangci-lint for Go, ESLint for JavaScript, and Pylint for Python. In fact, almost every widely used programming language has its own linter or code quality tool. Linters are especially helpful when generating code with AI — they help keep your code clean and safe, at least to some degree.

  4. pytype

    A static type analyzer for Python code

    Project mention: Writing that changed how I think about PL | news.ycombinator.com | 2025-05-14

    pytype is based in part upon byterun https://github.com/google/pytype/blob/main/docs/developers/i...

    I learnt a lot about bytecode interpreters from working on it, and it helped me understand the cpython source code a lot more easily from having played with a python translation of it first.

  5. Flake8

    flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.

    Project mention: Top Tools for Static Analysis Help in Your Python Projects | dev.to | 2025-03-18

    Flake8: This tool checks for style errors and simple programming mistakes.

  6. pyt

    A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications

  7. ipyflow

    A reactive Python kernel for Jupyter notebooks.

    Project mention: Ipyflow: A reactive Python kernel for Jupyter notebooks | news.ycombinator.com | 2024-12-13
  8. betterscan

    Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

  9. SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
  10. PEP 8 Speaks

    A GitHub :octocat: app to automatically review Python code style over Pull Requests

  11. astroid

    A common base representation of python source code for pylint and other projects (by pylint-dev)

  12. tryceratops

    A linter to prevent exception handling antipatterns in Python (limited only for those who like dinosaurs).

  13. pyan

    Static call graph generator. The official Python 3 version. Development repo.

  14. jcci

    Java code commit impact, java code change impact analysis,java代码改动影响范围分析工具,精准测试,回归测试范围划定

  15. mutahunter

    Open Source, Language Agnostic Mutation Testing

    Project mention: Show HN: Using old school mutation testing to boost LLM based unit test gen | news.ycombinator.com | 2024-07-22
  16. klara

    Automatic test case generation for python and static analysis library

  17. wpbullet

    A static code analysis for WordPress (and PHP)

  18. pfun

    Functional, composable, asynchronous, type-safe Python.

  19. torchfix

    TorchFix - a linter for PyTorch-using code with autofix support

  20. flake8-bandit

    Automated security testing using bandit and flake8.

  21. gct

    Graphical Code Tracer (GCT): Visualize code at lightning speed

  22. pynalyzer

    Meta code analysis tool, bundling together multiple code analysis libs

  23. SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Python static-code-analysis discussion

Log in or Post with

Python static-code-analysis related posts

  • From Vibe Coder to AI-Assisted Architect

    5 projects | dev.to | 7 May 2025
  • Top Tools for Static Analysis Help in Your Python Projects

    6 projects | dev.to | 18 Mar 2025
  • Ipyflow: A reactive Python kernel for Jupyter notebooks

    1 project | news.ycombinator.com | 13 Dec 2024
  • Astral: Next-Gen Python Tooling

    6 projects | news.ycombinator.com | 30 Oct 2024
  • W1203: logging-fstring-interpolation (Solved)

    1 project | dev.to | 21 Jan 2024
  • Enhancing Python Code Quality: A Comprehensive Guide to Linting with Ruff

    5 projects | dev.to | 12 Jul 2023
  • GitHub - ipyflow/ipyflow: A reactive Python kernel for Jupyter notebooks

    1 project | /r/Python | 22 May 2023
  • A note from our sponsor - SaaSHub
    www.saashub.com | 19 May 2025
    SaaSHub helps you find the best software and product alternatives Learn more →

Index

What are some of the best open-source static-code-analysis projects in Python? This list will help you:

# Project Stars
1 bandit 6,965
2 Pylint 5,462
3 pytype 4,886
4 Flake8 3,610
5 pyt 2,186
6 ipyflow 1,222
7 betterscan 859
8 PEP 8 Speaks 615
9 astroid 543
10 tryceratops 442
11 pyan 372
12 jcci 306
13 mutahunter 270
14 klara 262
15 wpbullet 234
16 pfun 150
17 torchfix 141
18 flake8-bandit 113
19 gct 53
20 pynalyzer 2

Sponsored
InfluxDB – Built for High-Performance Time Series Workloads
InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.
www.influxdata.com

Did you know that Python is
the 2nd most popular programming language
based on number of references?