Python static-code-analysis

Open-source Python projects categorized as static-code-analysis

Top 17 Python static-code-analysis Projects

  • bandit

    Bandit is a tool designed to find common security issues in Python code.

    Project mention: Enhance Your Project Quality with These Top Python Libraries | dev.to | 2024-03-18

    Bandit is a tool designed to find common security issues in Python code. It was developed by the OpenStack Security Project and is a great addition to any serious Python project.

  • Pylint

    It's not just a linter that annoys you!

    Project mention: W1203: logging-fstring-interpolation (Solved) | dev.to | 2024-01-21

    A little introduction about pylint. Pylint is a static code analyzer, it analyses your code without actually running it. Pylint looks for potential errors, gives suggestions on coding standards that your code is not adhering to, potential places where refactoring might help, and also warnings about smelly code.

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  • pytype

    A static type analyzer for Python code

    Project mention: Enhance Your Project Quality with These Top Python Libraries | dev.to | 2024-03-18

    Pytype checks and infers types for your Python code - without requiring type annotations. Pytype can catch type errors in your Python code before you even run it.

  • Flake8

    flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.

    Project mention: Enhance Your Project Quality with These Top Python Libraries | dev.to | 2024-03-18

    Flake8. This library is a wrapper around pycodestyle (PEP8), pyflakes, and Ned Batchelder’s McCabe script. It is a great toolkit for checking your code base against coding style (PEP8), programming errors (like SyntaxError, NameError, etc) and to check cyclomatic complexity.

  • pyt

    A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications

  • ipyflow

    A reactive Python kernel for Jupyter notebooks.

    Project mention: Show HN: Marimo – an open-source reactive notebook for Python | news.ycombinator.com | 2024-01-12

    You're probably referring to nbgather (https://github.com/microsoft/gather), which shipped with VSCode for a while.

    nbgather used static slicing to get all the code necessary to reconstruct some cell. I actually worked with Andrew Head (original nbgather author) and Shreya Shankar to implement something similar in ipyflow (but with dynamic slicing and a not-as-nice interface): https://github.com/ipyflow/ipyflow?tab=readme-ov-file#state-...

    I have no doubt something like this will make its way into marimo's roadmap at some point :)

  • betterscan-ce

    Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners + OpenAI GPT with One Report (Code, IaC) - Betterscan Community Edition (CE)

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  • PEP 8 Speaks

    A GitHub :octocat: app to automatically review Python code style over Pull Requests

  • astroid

    A common base representation of python source code for pylint and other projects (by pylint-dev)

  • tryceratops

    A linter to prevent exception handling antipatterns in Python (limited only for those who like dinosaurs).

  • pyan

    Static call graph generator. The official Python 3 version. Development repo.

    Project mention: Ask HN: Anyone use a code to mindmap/flowchart tool? | news.ycombinator.com | 2024-02-24

    Are you looking for something like a call graph?

    There's pyan3 [1] which although doesn't support python 3.7+, I've still had luck with v1.0.4 which works better for me than its most recent version with python 3.11, but there can be some weird issues though depending on your code style.

    A quick search also turned up crabviz [2] which has support for more languages than just python.

    [1] https://github.com/Technologicat/pyan

    [2] https://github.com/chanhx/crabviz

  • klara

    Automatic test case generation for python and static analysis library

  • wpbullet

    A static code analysis for WordPress (and PHP)

  • pfun

    Functional, composable, asynchronous, type-safe Python.

  • flake8-bandit

    Automated security testing using bandit and flake8.

  • gct

    Graphical Code Tracer (GCT): Visualize code at lightning speed

  • pynalyzer

    Meta code analysis tool, bundling together multiple code analysis libs

    Project mention: Check out pynalyzer - easy to use meta static code analysis bundle | /r/learnpython | 2023-07-06

    Here are the links: pypi: https://pypi.org/project/pynalyzer/ github: https://github.com/Devourian/pynalyzer Feel free to ask anything about it here and / or report an issue on GitHub, if something doesn't seem to work :)

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2024-03-18.

Python static-code-analysis related posts

Index

What are some of the best open-source static-code-analysis projects in Python? This list will help you:

Project Stars
1 bandit 5,914
2 Pylint 5,085
3 pytype 4,520
4 Flake8 3,231
5 pyt 2,161
6 ipyflow 1,068
7 betterscan-ce 672
8 PEP 8 Speaks 603
9 astroid 507
10 tryceratops 418
11 pyan 307
12 klara 257
13 wpbullet 220
14 pfun 146
15 flake8-bandit 111
16 gct 43
17 pynalyzer 2
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com