Are there any static analysis tools that can be used to gauge security holes and privacy risk on open source software?

This page summarizes the projects mentioned and recommended in the original post on

Our great sponsors
  • Scout APM - Less time debugging, more time building
  • SonarLint - Clean code begins in your IDE with SonarLint
  • SaaSHub - Software Alternatives and Reviews
  • Sobelow

    Security-focused static analysis for the Phoenix Framework

    There is one for elixir that I plan on using for elixir based projects

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts