3 repositorios
Systems that apply custom rules to Java source code to ensure adherence to coding and formatting standards.
Distinct from Static Analysis Rules: Candidates focus on bytecode analysis or general rules; this is a full tool for Java source enforcement.
Explore 3 awesome GitHub repositories matching software engineering & architecture · Java Static Analysis Tools. Refine with filters or upvote what's useful.
vjtools is a comprehensive Java development toolset and runtime monitor designed for optimizing application performance and ensuring codebase consistency. It provides a suite of JVM diagnostics tools, a performance profiler, and a static analysis system for enforcing coding standards. The project distinguishes itself through specialized runtime observability, including the ability to attach to processes via process ID and inject dynamic probes to monitor method calls without restarting the system. It features container-aware resource detection that reads control group files to report actual C
Enforces coding standards and formatting rules across Java codebases using custom analysis rules.
NullAway is a Java static analysis tool and build-time detector designed to identify null pointer risks. It functions as a nullability checker that uses annotations to verify that references are not null before they are dereferenced, preventing runtime crashes. The analyzer implements the JSpecify standard to ensure consistent nullability annotations across different Java libraries. It distinguishes itself through the use of a service provider interface to model the nullability behavior of third-party libraries that lack source annotations and by providing specialized support for Lombok-gener
Serves as a full static analysis tool for Java source code to enforce null safety rules.
SpotBugs is a static analysis tool and bytecode analyzer for Java applications. It scans compiled class files to identify bugs, security vulnerabilities, and performance issues without executing the code. The system functions as both a bug detector and a static application security testing tool to locate logical errors and API misuse. The project distinguishes itself through a plugin-based detector architecture that allows the integration of external libraries to add custom detection rules. It provides specialized security auditing for vulnerabilities such as SQL injection, cross-site scripti
Scans compiled Java bytecode to find logic errors, null pointer exceptions, and resource leaks without running the code.