⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.
-
Updated
Jun 10, 2026 - Rust
Automate your code review with style, quality, security, and test‑coverage checks when you need them most. Code quality is intended to keep complexity down and runtime up.
⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.
A fast type checker and language server for Python
Codebase intelligence for TypeScript and JavaScript. Free static analysis of code and styles: unused code, duplication, circular deps, complexity hotspots, architecture boundaries, design-system drift. Optional paid runtime layer (Fallow Runtime): hot-path review and cold-path deletion evidence from real production traffic.
💎 Code quality CLI for universal linting, auto-formatting, security scanning, and maintainability
A Python tool to visualize + enforce dependencies, using modular architecture 🌎 Open source 🐍 Installable via pip 🔧 Able to be adopted incrementally - ⚡ Implemented with no runtime impact ♾️ Interoperable with your existing systems 🦀 Written in rust
Real-time architectural sensor that helps AI agents close the feedback loop, enabling recursive self-improvement of code quality. Pure Rust.
A tool for refactoring code related to feature flag APIs
🐰 Bencher - Continuous Benchmarking
Change Risk Anti-Patterns (CRAP) metric for Rust projects
The missing linter and lsp for AI coding assistants. Validate CLAUDE.md, AGENTS.md, SKILL.md, hooks, MCP. Plugin for all major IDEs included, with autofixes.
Autonomous AI agent that contributes to open source — discovers repos, analyzes code, generates fixes, and submits PRs
Next-generation SQL static analyzer written in Rust. 282+ rules. Zero false positives. Security, performance, reliability, cost, compliance, quality. 14 SQL dialects. Offline. CI/CD ready.
Finds the code your AI wrote twice. Fast, offline duplicate-code detector: scan, history chart, CI gate. No AI required.
The code quality toolkit for the agentic AI era. Find dead code, clones, and scaffolding across 15 languages. MCP server + CLI.
cpa is a cli tool for ultra fast setup of Rust & Python projects
Technical debt and risk analyzer that predicts bug hotspots by combining cognitive complexity, pattern recognition, coverage gaps, information theory, and git history.
Multi-language static analysis with cross-file taint tracking. Scan your repo, triage findings in your browser, commit triage state with your code. No cloud, no account.
🔍 code quality scanner for the AI-generated code era
Repository Code Quality Tool
YAML configs and K8s manifests validation tool
an add-on to github actions which allows safely pushing changes back to pull requests
Automatic test report merging for all CI and languages into a single code coverage report directly into your pull request
Automatically fix pull requests to increase developer productivity
Ensure that new code is fully covered, and see coverage trends emerge. Works with any CI service
AI Code Review Platform
Detect flaky tests, quantify CI waste in dollars, and auto-fix with AI. For GitHub Actions teams
Codacy helps to build effortless code quality and security for developers
Catch more Python and Django bugs during code review
Code scanning at ludicrous speed. Find bugs and reachable dependency vulnerabilities. Enforce standards on every commit
Apply size labels to Pull Requests based on the total lines of code changed
Automated code review for humans and AI
ABAP quality assurance and static analysis
A GitHub app that optimizes your images
Test Plan Driven QA Test Management for GitHub