Python static-code-analysis

Open-source Python projects categorized as static-code-analysis | Edit details

Top 14 Python static-code-analysis Projects

  • GitHub repo bandit

    Bandit is a tool designed to find common security issues in Python code.

    Project mention: Check your code in Python notebooks | dev.to | 2021-10-26

    Our plugin surfaces semantic issues in your Python code. In the example above, it detects invalid file mode being used to open the file as well as dictionary key issues. Our plugin is powered by multiple open-source tools (such as Pylint or Bandit) that surface common errors Python programmers do. By using our plugin, you not only ensure that your code adheres to good coding practices and but also detect bugs in seconds as you write code in your browser. After lots of interviews with developers, one thing that stood out was: “When it comes to reviewing the code, by the time the code hits GitHub is already too late” why? because imagine programming for 3 to 4 hours, only to be told part of your code next to be fixed. So we started working on a faster more effective way to review your code, one that catches the bug when you write it, so it’s easier for you to fix.

  • GitHub repo Pylint

    It's not just a linter that annoys you!

    Project mention: When is it bad to use OOP? | reddit.com/r/learnpython | 2021-09-30

    So it doesn't say it isn't justified, it indicates that you might want to reconsider. So by leaving out that nuance, you're promoting this to a binary bad/wrong label which it really isn't. Also consider it's a bit obsolete in context of for example dataclasses and custom exceptions, as those often have 0 methods unless you need something extra from them. See for example complaint tickets about these https://github.com/PyCQA/pylint/issues/4464 and https://github.com/PyCQA/pylint/issues/3732. So to summarize, using a linter's best effort to indicate something that can easily be a non-issue isn't exactly the best source for programming style rules.

  • Scout APM

    Scout APM: A developer's best friend. Try free for 14-days. Scout APM uses tracing logic that ties bottlenecks to source code so you know the exact line of code causing performance issues and can get back to building a great product faster.

  • GitHub repo pytype

    A static type analyzer for Python code

    Project mention: mypy alternatives - pytype and pyright | libhunt.com/r/mypy | 2021-10-30

    another library to check typing in python code (by google)

  • GitHub repo pyt

    A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications

    Project mention: python-security/pyt - A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications | reddit.com/r/GithubSecurityTools | 2021-03-16
  • GitHub repo Flake8

    flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.

    Project mention: Python Code Quality - Improve the quality of your Python code with linters, code formatters, and security vulnerability scanners | reddit.com/r/Python | 2021-11-07

    yaml repos: - repo: https://github.com/myint/autoflake rev: v1.4 hooks: - id: autoflake args: - --in-place - --remove-all-unused-imports - --expand-star-imports - --remove-duplicate-keys - --remove-unused-variables - repo: https://github.com/asottile/pyupgrade rev: v2.29.0 hooks: - id: pyupgrade args: [--py36-plus] - repo: https://github.com/PyCQA/isort rev: 5.9.3 hooks: - id: isort - repo: https://github.com/psf/black rev: 21.10b0 hooks: - id: black args: [--safe, --quiet] - repo: https://github.com/PyCQA/flake8 rev: 4.0.1 hooks: - id: flake8 - repo: local hooks: - id: pylint name: pylint entry: pylint language: system types: [python] args: [ "-rn", "-sn", ] - repo: https://github.com/pre-commit/mirrors-mypy rev: v0.910-1 hooks: - id: mypy name: mypy entry: mypy language: python types: [python] args: [] require_serial: true - repo: https://github.com/pre-commit/mirrors-prettier rev: v2.4.1 hooks: - id: prettier args: [--prose-wrap=always, --print-width=88]

  • GitHub repo PEP 8 Speaks

    A GitHub :octocat: app to automatically review Python code style over Pull Requests

  • GitHub repo tryceratops

    A linter to prevent exception handling antipatterns in Python (limited only for those who like dinosaurs).

    Project mention: Is it bad to capture a bare Exception? | news.ycombinator.com | 2021-07-22
  • Nanos

    Run Linux Software Faster and Safer than Linux with Unikernels.

  • GitHub repo klara

    Automatic test case generation for python and static analysis library

    Project mention: Klara: Python automatic test generations and static analysis library | reddit.com/r/Python | 2021-09-13

    Klara is an automatic python unit test generation tool based on SMT (z3) solver. It's currently in early stage and still have many limitation (looping, comprehension, importing is not supported to name a few).

  • GitHub repo pyan

    Static call graph generator. The official Python 3 version. Development repo.

    Project mention: GitHub - Technologicat/pyan: Static call graph generator. The official Python 3 version. Development repo. | reddit.com/r/Python | 2021-09-19
  • GitHub repo wpbullet

    A static code analysis for WordPress (and PHP)

    Project mention: webarx-security/wpbullet - A static code analysis for WordPress (and PHP) | reddit.com/r/GithubSecurityTools | 2021-09-02
  • GitHub repo unimport

    A linter, formatter for finding and removing unused import statements.

  • GitHub repo pfun

    Functional, composable, asynchronous, type-safe Python.

    Project mention: good examples of functional-like python code that one can study? | reddit.com/r/functionalprogramming | 2021-06-29

    Another examples: pfun - stuff you'd find in FP language, but in Python (like using monads for effects)

  • GitHub repo nbsafety

    Fearless interactivity for Jupyter notebooks.

    Project mention: Does Netflix use Jupyter Notebooks in production? | reddit.com/r/datascience | 2021-05-18

    Check out https://github.com/nbsafety-project/nbsafety

  • GitHub repo flake8-bandit

    Automated security testing using bandit and flake8.

    Project mention: Hardening and Simplifying Python's urlopen | dev.to | 2021-03-10

    A little disturbing, yes? Bandit agrees. Perhaps you want to consider scanning with that security tool or its related flake8 plugin.

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2021-11-07.

Python static-code-analysis related posts

Index

What are some of the best open-source static-code-analysis projects in Python? This list will help you:

Project Stars
1 bandit 3,747
2 Pylint 3,702
3 pytype 3,523
4 pyt 2,057
5 Flake8 1,678
6 PEP 8 Speaks 561
7 tryceratops 259
8 klara 230
9 pyan 162
10 wpbullet 158
11 unimport 115
12 pfun 112
13 nbsafety 97
14 flake8-bandit 66
Find remote jobs at our new job board 99remotejobs.com. There are 32 new remote jobs listed recently.
Are you hiring? Post a new remote job listing for free.
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com