# Results for "static analysis that finds security bugs in source code" > Search results for `static analysis that finds security bugs in source code` on awesome-repositories.com. 113 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/static-analysis-that-finds-security-bugs-in-source-code **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/static-analysis-that-finds-security-bugs-in-source-code).** ## Results - [analysis-tools-dev/static-analysis](https://awesome-repositories.com/repository/analysis-tools-dev-static-analysis.md) (14,389 ⭐) — This project is a comprehensive, curated directory of static analysis, linting, and security scanning utilities. It serves as a central resource for developers to discover, compare, and select tools based on specific programming languages, licensing models, and integration requirements. The directory distinguishes itself by providing deep metadata for each listed utility, including community-driven popularity rankings, maintenance status, and deployment methods. By aggregating these tools into a single searchable index, it enables teams to identify solutions for enforcing coding standards, managing technical debt, and auditing software supply chain security. The collection covers a broad spectrum of analysis capabilities, ranging from automated code refactoring and structural transformation to formal verification and database schema analysis. It also includes resources for orchestrating multiple linters within development workflows, visualizing code metrics, and performing security compliance audits across diverse repositories. - [keygraphhq/shannon](https://awesome-repositories.com/repository/keygraphhq-shannon.md) (44,672 ⭐) — Shannon is an integrated security platform designed for autonomous penetration testing, static and dynamic analysis, and automated vulnerability remediation within self-hosted, private infrastructure. It functions as a unified security suite that orchestrates the entire lifecycle of vulnerability management, from initial discovery and reachability prioritization to the generation and verification of code-level patches. The platform distinguishes itself through its agentic approach to security, deploying autonomous agents to execute both black-box and white-box exploits against running applications to confirm vulnerabilities. It utilizes graph-based data flow analysis to trace execution paths from user inputs to sensitive sinks, ensuring that security findings are based on reachable threats rather than raw scan results. By operating in isolated or air-gapped environments, the system maintains strict data sovereignty and residency, ensuring that source code and sensitive analysis data remain within the local perimeter. Beyond core testing, the platform provides comprehensive security observability and supply chain auditing. It correlates static code analysis with dynamic runtime exploitation to provide a unified view of risk, while automatically deduplicating findings to reduce alert noise. The system also supports the software supply chain by generating compliant manifests and inspecting container images without requiring a local container runtime. The platform integrates directly into existing development workflows, delivering verified patches to source control and synchronizing remediation status with external project management tools. It includes robust support for compliance reporting, audit trails, and risk acceptance management to meet regulatory requirements. - [git-bug/git-bug](https://awesome-repositories.com/repository/git-bug-git-bug.md) (9,900 ⭐) — git-bug is a distributed bug tracker and local-first issue manager that stores bug reports and comments as versioned objects directly within a Git repository. It integrates project management by coupling issue history with source code, using Git as the transport layer to synchronize task data across multiple local clones. The system enables distributed bug tracking without relying on a central server or external hosting provider. It utilizes a local indexing cache to provide near-instant searching and filtering of issue metadata without network latency. The project further supports synchronizing local issue data with external tracking services through service adapters to maintain consistent task status across different platforms. - [fatih/vim-go](https://awesome-repositories.com/repository/fatih-vim-go.md) (16,242 ⭐) — This project is a comprehensive development plugin for the Vim text editor, designed to transform the editor into a specialized environment for Go software development. It provides a suite of integrated tools that facilitate the entire development lifecycle, including writing, maintaining, and navigating Go source code. The plugin distinguishes itself by orchestrating external command-line binaries and language servers to perform heavy analysis, compilation, and formatting tasks as background processes. By mapping editor events to these external tools and utilizing virtual file system synchronization, it maintains editor responsiveness while providing real-time code intelligence, diagnostics, and automated structural changes. The feature set covers a broad range of development requirements, including automated import management, static code analysis, and integrated build and test execution. It also supports advanced workflows such as program debugging, test coverage visualization, and documentation lookup, all accessible directly within the editor workspace. - [facebook/react](https://awesome-repositories.com/repository/facebook-react.md) (245,669 ⭐) — React is a JavaScript library for building user interfaces based on a component-driven architecture and unidirectional data flow. - [dense-analysis/ale](https://awesome-repositories.com/repository/dense-analysis-ale.md) (13,966 ⭐) — Ale is an asynchronous code analysis tool and integrated development environment plugin designed for lightweight text editors. It functions as a language server protocol client, enabling real-time code intelligence and diagnostic feedback by running analysis tasks in the background to ensure the editor interface remains responsive during intensive operations. The plugin utilizes an event-driven architecture to monitor text buffers and trigger linting or formatting routines automatically. It distinguishes itself through a modular extensibility framework that supports a wide range of language-specific tools, allowing users to configure custom linting rules and manage diagnostic processes across diverse programming environments. Beyond basic syntax checking, the project provides comprehensive capabilities for codebase navigation and refactoring. Users can jump to symbol definitions, search for references across a workspace, and perform automated code fixes or symbol renaming. The system also includes built-in support for validating plugin compatibility through automated test suites designed for isolated editor environments. - [find-sec-bugs/find-sec-bugs](https://awesome-repositories.com/repository/find-sec-bugs-find-sec-bugs.md) (0 ⭐) - [avelino/awesome-go](https://awesome-repositories.com/repository/avelino-awesome-go.md) (175,576 ⭐) — This project serves as a comprehensive language ecosystem index, functioning as a centralized, community-curated directory for the Go programming language. It organizes a vast landscape of software components, libraries, and development tools into a structured, navigable hierarchy, enabling developers to efficiently discover resources tailored to specific functional domains. The repository distinguishes itself through a decentralized contribution model, where community-driven updates ensure the index remains current with the rapidly evolving software landscape. Beyond simple resource listing, it acts as a technical knowledge repository, aggregating professional literature, style guides, and best practices to support developer onboarding and professional growth across the entire software development lifecycle. The directory covers a broad capability surface, including essential utilities for distributed systems engineering, application security, data processing, and development productivity. It provides access to specialized tools for database management, web framework integration, testing, and build automation, alongside educational materials that help developers master language-specific architectural patterns. The project is maintained as a static resource aggregation, providing a holistic view of external links and documentation to orient developers within the Go ecosystem. - [pycqa/bandit](https://awesome-repositories.com/repository/pycqa-bandit.md) (8,092 ⭐) — Bandit is a static analysis security testing tool and vulnerability detection scanner for Python source code. It functions as a security-focused linter and static analyzer that identifies common vulnerabilities and architectural flaws without executing the program. The tool utilizes an abstract syntax tree to analyze code patterns and identifies risky function calls or insecure configurations. It employs a plugin-based rule engine to decouple scanning logic from individual security checks and supports configuration-driven filtering to exclude specific files or ignore certain warnings. The system processes source files through a static analysis pipeline that includes parsing and node visiting to detect weaknesses. After scanning, it generates detailed security reports summarizing the identified flaws. - [astral-sh/ruff](https://awesome-repositories.com/repository/astral-sh-ruff.md) (48,018 ⭐) — Ruff is a high-performance static analysis and code formatting tool designed for Python. Built in Rust, it functions as a comprehensive engine that scans source code to detect programming errors, security vulnerabilities, and deviations from established coding standards. By parsing source code into a structured tree representation, it provides both automated linting and style enforcement across entire projects. The tool distinguishes itself through its speed and deep integration into the development lifecycle. It utilizes parallelized file processing to maximize throughput on large codebases and offers a configuration-driven rule engine that allows developers to customize or suppress specific checks. Beyond standard Python scripts, it provides native support for Jupyter notebooks, Markdown files, and documentation strings, ensuring consistent quality across diverse document formats. Ruff serves as a versatile utility for project maintenance, offering automated import management and the ability to apply safe, automatic corrections to identified code quality issues. It integrates directly into development environments via the Language Server Protocol, providing real-time diagnostic highlighting, code actions, and rule documentation hovers. These capabilities extend to continuous integration pipelines and pre-commit hooks, enabling automated quality enforcement throughout the development process. - [exakat/php-static-analysis-tools](https://awesome-repositories.com/repository/exakat-php-static-analysis-tools.md) (2,879 ⭐) — A reviewed list of useful PHP static analysis tools - [tfsec/tfsec](https://awesome-repositories.com/repository/tfsec-tfsec.md) (7,013 ⭐) — tfsec is a static analysis tool and security scanner for infrastructure as code, specifically designed to detect misconfigurations and compliance violations in Terraform and cloud infrastructure definitions before deployment. It functions as a cloud security policy engine that identifies vulnerabilities across multiple cloud platforms. The tool provides capabilities for cloud compliance auditing and scanning of Cloud Development Kit code. It supports custom security policy enforcement and allows for the definition of organization-specific security requirements. The scanner includes features for automating analysis within DevSecOps pipelines and exporting results to security dashboards. It manages analysis noise through check filtering and the suppression of security warnings via inline comments with expiration dates. - [rmalmain/39c3-build-a-fake-phone-find-real-bugs](https://awesome-repositories.com/repository/rmalmain-39c3-build-a-fake-phone-find-real-bugs.md) (39 ⭐) — The companion repository for the 39C3 talk: Build a Fake Phone, Find Real Bugs: Qualcomm GPU Emulation and Fuzzing with LibAFL QEMU - [doctorwkt/acwj](https://awesome-repositories.com/repository/doctorwkt-acwj.md) (13,235 ⭐) — This project is a compiler development tutorial that provides a series of guides and exercises for building a complete compiler from scratch. It focuses on the implementation of a structured compilation pipeline to transform high-level source code into executable machine instructions. The project covers the creation of a machine code generator for specific processor architectures and a static analysis framework. This framework includes methodologies for implementing type checking and constant folding to verify logic correctness before the final execution phase. The instructional material encompasses the entire compilation process, including language front-end development with lexical scanners and parsers, as well as the engineering of multi-pass pipelines. It also addresses the design of self-hosting compilers and the use of recursive descent parsing. - [aosabook/500lines](https://awesome-repositories.com/repository/aosabook-500lines.md) (29,582 ⭐) — This project is a software engineering educational resource providing a collection of canonical system implementations. It serves as a library of computer science case studies and polyglot code examples designed to demonstrate architectural tradeoffs and design patterns through concise versions of fundamental software components. The repository focuses on studying the implementation of core concepts such as consensus algorithms, interpreters, and database engines. It provides minimal versions of complex systems to facilitate the analysis of language design, data structure implementation, and the simulation of algorithmic tradeoffs. The capability surface covers a wide range of domains, including data storage and synchronization, distributed systems, language design and bytecode interpretation, and web networking. It also includes implementations for mathematical modeling, combinatorial optimization, and security policy modeling. - [curl/curl](https://awesome-repositories.com/repository/curl-curl.md) (42,137 ⭐) — Curl is a command-line tool and portable library for transferring data across a wide range of network protocols. It functions as a unified engine that abstracts diverse communication standards, allowing users and developers to move files and information between servers using a consistent interface. The project provides both a versatile command-line client for terminal-based automation and a stable programmatic interface for integrating complex network operations into applications. The system is distinguished by its protocol-agnostic core and its ability to manage both synchronous and asynchronous network transfers. It features a non-blocking event loop that enables multiple simultaneous transfers within a single thread, alongside a connection pooling mechanism that reuses network sockets to minimize latency. Security is a primary focus, implemented through a pluggable architecture that supports various cryptographic backends, native certificate store integration, and comprehensive authentication mechanisms for protected resources. Beyond core data movement, the project includes extensive support for modern networking standards, including HTTP/3, WebSockets, and MQTT. It offers sophisticated state management through a built-in cookie engine and provides granular control over request headers, URL construction, and batch processing. These capabilities are supported by robust debugging tools that allow for the inspection of raw request and response data during development. The project is distributed with standard configuration scripts and package management support to facilitate integration into diverse build environments. - [security-code-scan/security-code-scan](https://awesome-repositories.com/repository/security-code-scan-security-code-scan.md) (975 ⭐) — Vulnerability Patterns Detector for C# and VB.NET - [liamg/tfsec](https://awesome-repositories.com/repository/liamg-tfsec.md) (7,013 ⭐) — tfsec is a static analysis tool and security scanner for Terraform configuration files. It functions as an infrastructure as code security scanner and compliance linter designed to detect misconfigurations and vulnerabilities across multiple cloud providers before resources are deployed. The tool identifies security risks by analyzing infrastructure code and variable files to evaluate the final state of the environment. It supports custom policy enforcement and allows for the suppression of specific security warnings through inline comments. Its capabilities cover cloud security posture management, infrastructure as code compliance, and integration into DevSecOps pipelines. The system also provides scan result export and security alert synchronization for centralized vulnerability management. - [aquasecurity/tfsec](https://awesome-repositories.com/repository/aquasecurity-tfsec.md) (7,013 ⭐) — tfsec is a static analysis tool and infrastructure as code linter designed to detect security misconfigurations and compliance violations in Terraform infrastructure code. It functions as a cloud security posture tool and policy enforcement engine that evaluates configurations against established security benchmarks. The tool provides multi-cloud security auditing for providers including AWS, Azure, Google Cloud, and Kubernetes, as well as specialized scanning for DigitalOcean, OpenStack, CloudStack, and GitHub configurations. It identifies insecure settings such as public access or unencrypted storage across compute, networking, and identity services. The engine includes capabilities for complex expression evaluation to resolve functional expressions and resource relationships, ensuring misconfigurations are detected beyond literal string values. It supports custom policy definitions for organization-specific standards and allows for security warning suppression via source code comments or command-line flags. The scanner is designed for CI/CD security integration as a standalone binary or container, with the ability to export findings in structured formats such as JSON, SARIF, and CSV. - [introlab/find-object](https://awesome-repositories.com/repository/introlab-find-object.md) (477 ⭐) — Find-Object project - [elastic/elasticsearch](https://awesome-repositories.com/repository/elastic-elasticsearch.md) (77,012 ⭐) — Elasticsearch is a distributed search engine and document store designed for the high-performance indexing and retrieval of massive volumes of unstructured data. It functions as a centralized analytics platform, providing a schema-flexible architecture that organizes information into searchable indices while maintaining global cluster state through a distributed consensus mechanism. The platform distinguishes itself through its integrated approach to observability, security, and advanced analytics. It combines full-text, vector, and hybrid search capabilities with machine learning-driven insights, allowing users to perform complex statistical aggregations, geospatial analysis, and automated anomaly detection. Its storage architecture supports multi-tier data lifecycles, enabling efficient data placement across hot, warm, and cold nodes to balance performance with long-term retention requirements. Beyond core search and storage, the system provides comprehensive observability tools for centralized log analysis, application performance monitoring, and infrastructure health diagnostics. It includes built-in security operations for threat detection and endpoint protection, all managed through a unified RESTful API gateway. The system is accessible via standardized REST APIs for cluster management, data ingestion, and query execution. Extensive documentation is available to guide users through API references for search, indexing, security, and cluster administration. - [mobsf/mobile-security-framework-mobsf](https://awesome-repositories.com/repository/mobsf-mobile-security-framework-mobsf.md) (21,224 ⭐) — Mobile Security Framework is an automated security testing platform designed for the analysis of Android, iOS, and Windows mobile application binaries. It functions as a comprehensive suite for identifying security vulnerabilities, privacy risks, and malicious code within mobile software packages. The framework distinguishes itself by combining static and dynamic analysis techniques to evaluate application behavior. It performs static inspection of source code and binaries to detect insecure patterns, while simultaneously utilizing dynamic instrumentation and containerized sandboxing to monitor runtime execution and data flows. This dual approach allows for the identification of both latent coding flaws and active malicious behaviors. The platform supports automated security workflows through a standardized interface, enabling the integration of vulnerability scanning into continuous integration and deployment pipelines. It also provides structured reporting capabilities that map findings to security compliance frameworks, alongside tools for verifying the authenticity and integrity of software packages. - [c0re100/qbittorrent-enhanced-edition](https://awesome-repositories.com/repository/c0re100-qbittorrent-enhanced-edition.md) (25,128 ⭐) — qBittorrent-Enhanced-Edition is a cross-platform desktop application designed to manage the downloading and uploading of files across peer-to-peer networks. It functions as an open-source file sharer, facilitating the decentralized distribution of digital content by breaking files into smaller pieces for efficient transfer. The application utilizes a high-performance library to handle complex protocol specifications and employs a mature widget toolkit to provide a consistent native user interface across Windows, macOS, and Linux. It operates as a network traffic manager, incorporating asynchronous event-driven networking and multi-threaded task scheduling to maintain high throughput and system responsiveness during large-scale data transfers. Beyond core file sharing, the software includes capabilities for automated content acquisition, remote management via web browsers, and granular bandwidth control. It supports extensible search functionality through external scripts and maintains state integrity using a local relational database for metadata storage. - [venmo/static](https://awesome-repositories.com/repository/venmo-static.md) (1,247 ⭐) — Simple static table views for iOS in Swift. - [continuedev/continue](https://awesome-repositories.com/repository/continuedev-continue.md) (33,716 ⭐) — Continue is an automated code review platform that integrates AI agents directly into the software development lifecycle. By executing custom validation rules against pull request diffs, it provides immediate feedback through repository status checks, allowing teams to enforce quality, security, and documentation standards before manual review begins. The system distinguishes itself through a file-based configuration model where validation logic is defined in version-controlled markdown files. These files act as system prompts that guide autonomous agents in evaluating code changes. This approach enables agentic task chaining, where specialized workflows—such as security scanning, test coverage validation, and UI rendering verification—are orchestrated to analyze code against project-specific criteria. Beyond automated reviews, the platform includes a local-first execution engine that allows developers to run and refine these checks from the command line before committing changes. The system also incorporates a feedback loop that tracks user acceptance and rejection of suggestions, enabling the refinement of check logic over time to reduce noise and improve the accuracy of automated findings. The project provides a command-line interface for managing these workflows and integrates with repository webhooks to trigger analysis automatically upon pull request submission. - [evilpacket/bower-burp-static-analysis](https://awesome-repositories.com/repository/evilpacket-bower-burp-static-analysis.md) (0 ⭐) - [imputnet/cobalt](https://awesome-repositories.com/repository/imputnet-cobalt.md) (40,899 ⭐) — Cobalt is a cross-platform web application designed as a distributed service platform for managing media content downloading. It functions as a full-stack monorepo that integrates a backend API with a responsive frontend, providing a unified interface for users to fetch and save media files from various online platforms. The project utilizes a modular architecture where backend services, frontend interfaces, and shared logic are organized into decoupled packages within a single repository. This monorepo structure employs centralized workspace orchestration to manage dependencies and cross-package builds, ensuring consistent versioning across the entire application. The backend exposes structured RESTful API endpoints to handle data operations, while the frontend is delivered as pre-compiled static assets for client-side rendering. The system supports containerized deployment and environment-variable configuration, allowing for consistent execution and self-hosted instances across different infrastructures. Comprehensive technical documentation is included within the repository to guide the deployment and operation of the service. - [flutter/flutter](https://awesome-repositories.com/repository/flutter-flutter.md) (176,956 ⭐) — This project is a multi-platform UI framework designed for building applications that target mobile, web, and desktop environments from a single codebase. It utilizes a declarative paradigm where the user interface is defined as a function of application state, supported by a layered architecture that includes a high-performance rendering engine and a multi-platform compilation model. The framework provides a comprehensive suite of developer tools, including hot reloading for real-time code injection and diagnostic utilities for monitoring application state and performance. It features a modular component system, a constraint-based layout engine, and built-in support for navigation, localization, and accessibility. Developers can extend functionality through a native integration model that supports platform-specific APIs, foreign function interfaces, and a package management system for dependency distribution. Beyond core UI development, the project includes infrastructure for application packaging and distribution across various app stores and web environments. It also incorporates concurrency models for background task management, security utilities for code obfuscation, and tools for integrating generative AI into the development workflow. - [ngalongc/bug-bounty-reference](https://awesome-repositories.com/repository/ngalongc-bug-bounty-reference.md) (4,216 ⭐) — Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature - [aquasecurity/trivy](https://awesome-repositories.com/repository/aquasecurity-trivy.md) (36,462 ⭐) — Trivy is a comprehensive security scanner designed to identify vulnerabilities and misconfigurations across container images, filesystems, and infrastructure as code files. It functions as a software composition analysis tool and an infrastructure security scanner, providing automated checks for CI/CD pipelines and cloud environments to ensure the integrity of the software supply chain. The tool distinguishes itself through a modular, plugin-based architecture that allows for the independent inspection of diverse targets. It utilizes a declarative policy engine to evaluate configurations against compliance standards and relies on a remote, periodically updated vulnerability database to maintain current detection logic without requiring binary updates. By employing static analysis pattern matching, it maps disparate scan results into a unified output schema for consistent reporting. Beyond its core scanning capabilities, the project supports cloud infrastructure auditing and deep inspection of local and remote environments. It is distributed as a single cross-platform executable, and comprehensive configuration and usage details are available in the project's official user guide. - [bbatsov/rubocop](https://awesome-repositories.com/repository/bbatsov-rubocop.md) (12,879 ⭐) — RuboCop is a static code analyzer and linter for Ruby. It functions as a static analysis tool designed to detect potential bugs, identify style violations, and improve overall code quality in Ruby projects. The project provides an automated code formatter that rewrites source code to align with established community standards. It also implements a language server protocol to surface linting and formatting errors directly within text editors. Its capabilities cover automated code linting and the analysis of Ruby code style to ensure consistency across a project. These functions are driven by a rule-based engine and a configuration-driven policy. - [sindresorhus/find-up](https://awesome-repositories.com/repository/sindresorhus-find-up.md) (640 ⭐) — Find a file or directory by walking up parent directories - [jquery/jquery](https://awesome-repositories.com/repository/jquery-jquery.md) (59,825 ⭐) — jQuery is a library designed for document object model manipulation and cross-browser interaction. It provides a unified interface for selecting, traversing, and modifying web page elements, ensuring consistent behavior across different rendering engines by abstracting away underlying browser inconsistencies. The library distinguishes itself through a dedicated CSS selector engine that parses strings into executable functions for element location. It incorporates a state machine for managing asynchronous operations and a feature-detection strategy that probes the environment to execute code paths tailored to specific browser capabilities. These mechanisms are supported by a fluent interface that allows multiple operations to be chained within a single statement. Beyond its core selection and manipulation capabilities, the project includes tools for event management, asynchronous data fetching, and animation orchestration. It also features a plugin architecture that allows for the extension of the core prototype to support custom functionality. The library is distributed with comprehensive documentation covering its primary methods for handling network requests, user interactions, and visual transitions. - [sarbbottam/eslint-find-rules](https://awesome-repositories.com/repository/sarbbottam-eslint-find-rules.md) (212 ⭐) — Find built-in ESLint rules you don't have in your custom config - [fincept-corporation/finceptterminal](https://awesome-repositories.com/repository/fincept-corporation-finceptterminal.md) (26,900 ⭐) — FinceptTerminal is a quantitative finance platform and financial engineering library designed for asset valuation, risk management, and fixed-income analytics. It provides a comprehensive suite for algorithmic trading and investment strategy automation, integrating specialized language model agents and node-based workflows to automate market research and alpha generation. The project distinguishes itself with a dedicated game theory analysis engine for calculating Nash equilibria and simulating strategic interactions in competitive markets. It also features a specialized credit risk modeling tool for estimating default probabilities, building credit scorecards, and calculating expected losses. The system covers a broad range of capability areas, including derivatives pricing, yield curve construction, and multi-asset portfolio analysis. It incorporates machine learning tools for credit scorecard development and feature engineering, as well as economic analysis frameworks for utility theory and exchange economies. The platform includes an algorithmic trading suite for real-time trade execution and an LLM investment agent framework for geopolitical and market modeling. - [peco/peco](https://awesome-repositories.com/repository/peco-peco.md) (7,892 ⭐) — Peco is an interactive text filter and fuzzy finder for the terminal. It serves as a terminal user interface selection tool that filters standard input in real-time using fuzzy matching and regular expressions. The tool preserves and renders ANSI color escape sequences from piped input streams while performing matching logic on plain-text versions. It supports multi-stage filtering, allowing users to freeze result sets to create a new base for subsequent refinements. Capability areas include advanced search filtering with negative matching, multi-item selection, and the ability to pipe selected lines into external shell commands. The interface is customizable via layout configurations, key binding maps, and the integration of external filter binaries. The project is written in Go and provides a compiled binary executable. - [en/code-security](https://awesome-repositories.com/repository/en-code-security.md) (0 ⭐) - [typescript-eslint/typescript-eslint](https://awesome-repositories.com/repository/typescript-eslint-typescript-eslint.md) (16,103 ⭐) — This project is a static analysis framework and linting engine designed to inspect TypeScript codebases. It functions as a plugin suite that enables standard linting workflows to parse source code into abstract syntax trees, allowing for the automated enforcement of coding standards and the identification of potential bugs through a modular, rule-based visitor pattern. The engine distinguishes itself by integrating directly with the TypeScript compiler to perform type-aware analysis. By accessing compiler type information, it can identify complex errors and unsafe patterns that standard syntax-only tools cannot detect. It also provides bridge-based compatibility, replacing or extending core linting rules to ensure that modern language features are inspected accurately without causing crashes or false reports. Beyond basic linting, the project offers comprehensive capabilities for maintaining codebase integrity. It includes security-focused mechanisms to restrict unsafe type usage, govern the use of suppression directives, and enforce strict type definitions. These tools are supported by configuration-driven project discovery, which automatically maps settings to analysis rules to simplify setup across complex monorepos and multi-project environments. - [f/prompts.chat](https://awesome-repositories.com/repository/f-prompts-chat.md) (163,814 ⭐) — This platform serves as a centralized management system for organizing, refining, and versioning AI instructions and agent skills. It functions as a repository that enables users to store, categorize, and retrieve structured prompts, ensuring consistent performance across various artificial intelligence models. By integrating with the Model Context Protocol, the system allows external AI assistants and development environments to discover and access these instruction libraries directly. The platform distinguishes itself through its focus on prompt engineering and automated refinement, utilizing generative analysis to transform basic user instructions into structured, high-performance prompts. It supports multi-tenant white-labeling, allowing for isolated, custom-branded deployments that include secure identity management and granular access control. Additionally, the system incorporates an interactive educational environment designed to teach users effective techniques for constructing and optimizing AI interactions. Beyond core management, the platform provides semantic search indexing to facilitate efficient discovery of relevant instructions based on user intent. It also supports the development of complex agent skills and includes automated workflows that enforce behavioral standards for AI interactions. The system is designed for both individual use and enterprise-grade infrastructure deployment, offering tools for visual customization and interface localization to meet diverse organizational requirements. - [qax-os/excelize](https://awesome-repositories.com/repository/qax-os-excelize.md) (20,302 ⭐) — Excelize is a library for reading and writing spreadsheet files in the Office Open XML format. It provides a comprehensive suite of tools for programmatically creating, modifying, and analyzing workbooks, worksheets, and cell data, ensuring compatibility across various office software suites through structured XML serialization. The library distinguishes itself with a built-in formula calculation engine that evaluates complex mathematical and logical expressions directly against workbook data. It also features a memory-mapped streaming architecture, which allows for the efficient processing of massive spreadsheet files by handling data in chunks, thereby maintaining low memory usage during document manipulation. Beyond basic file operations, the project supports advanced document features including style-driven formatting, conditional rules, and the embedding of graphical elements like charts and pivot tables. It also provides security capabilities, allowing users to encrypt and decrypt protected spreadsheet files to manage sensitive information. The project is implemented in Go and is available for integration into applications requiring automated spreadsheet generation, data import and export, or complex document transformation. - [windofshadow/that](https://awesome-repositories.com/repository/windofshadow-that.md) (0 ⭐) - [github/opensource.guide](https://awesome-repositories.com/repository/github-opensource-guide.md) (15,244 ⭐) — This project serves as a comprehensive repository of best practices and documentation standards for managing open source software. It provides a foundational framework for establishing project governance, defining contributor roles, and structuring the lifecycle of collaborative software development. By centralizing knowledge on community building and operational transparency, it acts as a guide for launching, maintaining, and scaling healthy software projects. The project distinguishes itself by offering actionable strategies for the human and organizational aspects of software development that often fall outside of technical implementation. It covers methodologies for formalizing leadership hierarchies, implementing consensus-based decision-making, and enforcing codes of conduct to foster inclusive environments. Furthermore, it provides specific guidance on long-term sustainability, including frameworks for securing financial support, navigating legal requirements, and managing maintainer well-being to prevent burnout. Beyond its core governance focus, the project encompasses a broad range of operational capabilities. These include standardized workflows for contributor onboarding, security compliance practices such as vulnerability reporting and threat modeling, and quality assurance standards that integrate accessibility and automated maintenance. The documentation is designed to help maintainers navigate the complexities of project health, visibility, and strategic planning throughout the entire lifecycle of an open source initiative. - [flowr-analysis/flowr](https://awesome-repositories.com/repository/flowr-analysis-flowr.md) (94 ⭐) — Sophisticated static program analysis framework for the R programming language. - [ixartz/next-js-boilerplate](https://awesome-repositories.com/repository/ixartz-next-js-boilerplate.md) (12,982 ⭐) — This project is a production-ready starter template for building web applications with the React framework. It provides a structured environment that enforces type safety and consistent coding standards across the entire application stack using TypeScript. The boilerplate distinguishes itself by integrating pre-configured modules for authentication, database management, and internationalization. It includes built-in support for managing user sessions, performing type-safe database operations, and localizing interface content into multiple languages to support a global user base. The project also incorporates a comprehensive suite of tools for automated code quality assurance. This includes integrated static analysis, automated formatting, and testing utilities designed to identify potential bugs and maintain code integrity throughout the development lifecycle. The repository is distributed as a template that includes environment-variable configuration injection and middleware-based request handling to facilitate deployment. - [google/error-prone](https://awesome-repositories.com/repository/google-error-prone.md) (7,182 ⭐) — Error Prone is a static code analyzer and Java compiler extension that identifies common programming mistakes during the build process. It functions as a compiler wrapper that flags potential errors as compile-time failures to prevent bugs from reaching execution. The tool integrates directly into the Java compilation workflow to provide compile-time validation. It allows for the definition of custom linting rules and analysis checks to enforce specific coding standards and detect prohibited API usage. The system utilizes abstract syntax tree analysis and type-aware pattern matching to inspect source code without executing the program. It supports incremental compilation and triggers standard compiler error messages to block builds when predefined bug patterns are detected. - [planet-source-code/pscindex](https://awesome-repositories.com/repository/planet-source-code-pscindex.md) (0 ⭐) - [eigent-ai/eigent](https://awesome-repositories.com/repository/eigent-ai-eigent.md) (12,557 ⭐) — Eigent is a comprehensive platform for developing, configuring, and orchestrating autonomous AI agents. It functions as an agent development environment and workflow automation engine, enabling users to build modular agents equipped with custom toolsets, domain-specific skill packages, and external API connections to perform targeted operational tasks. The framework distinguishes itself through a robust multi-agent orchestration layer that coordinates teams of specialized agents to execute complex workflows. By utilizing hierarchical task decomposition, the system breaks high-level goals into granular subtasks that can be executed in parallel. It maintains operational reliability through event-driven monitoring and integrated human-in-the-loop protocols, which allow for manual oversight and intervention when agents encounter uncertainty or task failures. The platform provides a model-agnostic backend abstraction, allowing users to connect agents to a variety of local or cloud-based language model providers. This flexibility is supported by a modular tooling interface that connects agents to external software, remote servers, and custom functions. The system also includes mechanisms for persistent artifact storage and local data privacy management, ensuring that generated files and sensitive information are handled securely across different deployment environments. - [bitwarden/server](https://awesome-repositories.com/repository/bitwarden-server.md) (18,074 ⭐) — This project provides a comprehensive, self-hosted platform for zero-knowledge credential management and enterprise secrets orchestration. It functions as a secure vault that ensures all encryption and decryption processes occur exclusively on the client side, preventing the server from ever accessing plaintext data. By combining identity federation with robust access controls, the system enables organizations to centralize the management of passwords, passkeys, and sensitive infrastructure credentials. The platform distinguishes itself through its focus on both human-centric security and automated machine-to-machine workflows. It supports advanced authentication methods including hardware security keys, passkeys, and biometric unlocking, while simultaneously offering programmatic interfaces for injecting secrets directly into development pipelines and automated infrastructure deployments. This dual-purpose design allows teams to maintain strict data sovereignty through local hosting and containerized deployments while enforcing granular governance across their entire user base. Beyond core storage, the system includes extensive observability and compliance tools, such as immutable audit logging, credential risk analysis, and integration with external security information and event management platforms. It also facilitates secure collaboration through encrypted information sharing, emergency access delegation, and automated identity provisioning. The software is designed for flexible deployment across diverse infrastructure environments and includes command-line utilities for administrative tasks, bulk data migration, and secret retrieval. - [rubocop/rubocop](https://awesome-repositories.com/repository/rubocop-rubocop.md) (12,879 ⭐) — RuboCop is a static code analyzer, linter, and formatter for the Ruby language. It identifies style violations, smells, and errors in source code to ensure consistency and maintainability based on community guidelines. The project provides automatic source code formatting to rewrite files according to defined stylistic standards. It also functions as a language server protocol implementation, surfacing violations and suggested fixes directly within code editors. The tool covers code complexity monitoring to track the size of classes and methods and employs non-inclusive language detection to suggest alternative phrasing. It includes a configuration system for managing rule activation, file exclusions, and the generation of todo lists to track existing offenses for incremental cleanup. - [xvary-research/claude-code-stock-analysis-skill](https://awesome-repositories.com/repository/xvary-research-claude-code-stock-analysis-skill.md) (11 ⭐) — Claude Code stock analysis skill: SEC EDGAR + market data, /analyze /score /compare — free, local Python tools. By XVARY Research.