FileSequence
Codex
Figstack
CodeSee Maps
Trello
Veracode
PDFShift
Checkmarx
Coverity Scan
SonarQube
Checkmarx
Veracode
ReSharper
Klocwork
HCL AppScan
Appknox
FileSequence is an cross platform application which uses a static code analysis tool to create relationships between your codebase files so we can show how and which files depends upon each other. For now we support JavaScript and we are also capable of categorising types of dependencies, for example third party ones that are from npm packages, NodeJs native modules, require and import statements. We also integrate with GitLab and GitHub to visualize a merge request/pull request visually, so we can show how the new files depend on each other or what other files of the codebase they are using, we also detect new npm dependencies. We plan to eventually support Go, Python and a few other languages.
FileSequence Coverity ScanNo Coverity Scan videos yet. You could help us improve this page by suggesting one.
FileSequence's answer
We provide a fast, cross-platform application that runs locally on your machine, we don't depend on internet code repositories, which means your source code is safe as we don't expose any piece of it to the internet. Through our tree graph visualization of your codebase files, you can recursively expand each file dependencies and see what those dependencies depend upon on, until we arrive at the last used dependency.
FileSequence's answer
Backend developers, frontend developers, or software engineers, if you are experienced or just beginning, we can help you understand any codebase faster by showing the code architecture visually, through a tree graph, which you can quickly understand the impact of changing one file would potentially have across the codebase
FileSequence's answer
It all started in 2022 when we discovered SourceTrail, unfortunately, that tool isn't updated anymore and now is open-source, it's reach was rather limited by only supporting C++, seeing the advance of the "web of components" because of the big JavaScript frameworks, we got inspired to try something similar, but targeting JavaScript first, so in a complex component driven codebase, you can still see where each component is needed and what dependencies they have.
FileSequence's answer
Electron, WebGL and React
FileSequence's answer
We allow our users to configure the applications they want to parse with FileSequence, in an enterprise JavaScript codebase for example, it's likely a bundler ("Webpack", "Vite", to name a few) is being used, which may have "import aliases", "module paths" and different file extensions (like .mjs, .cjs, or even .tsx, .ts) without considering that, it wouldn't be possible to make correct connections between the codebase files, and we are the first ones to integrate that into a code visualization tool.
Based on our record, Coverity Scan seems to be more popular. It has been mentiond 4 times since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
You can use Coverity for free on open source code. I use it on an app I open sourced for packet processing. https://scan.coverity.com/. Source: over 2 years ago
Scan.coverity.com — Static code analysis for Java, C/C++, C# and JavaScript, free for Open Source. - Source: dev.to / almost 3 years ago
I personally remember Coverity Scan being completely offline for like 6 months while they tried to deal with infrastructure abuse from people mining bitcoin on their computing clusters. Source: about 3 years ago
> Does anyone know any good static analysers other than gcc's or clang's? Visual C++ as well, because since the XP SP2 issues, Microsoft has come up with SAL, which you can also use on your own code, https://docs.microsoft.com/en-us/cpp/code-quality/using-sal-annotations-to-reduce-c-cpp-code-defects?view=msvc-160 Then specialized tooling just for this purpose, just two examples, https://scan.coverity.com/... - Source: Hacker News / about 3 years ago
Codex - Codex is a VS Code extension that allows any engineer to attach comments, questions or any kind of content to specific lines of code.
SonarQube - SonarQube, a core component of the Sonar solution, is an open source, self-managed tool that systematically helps developers and organizations deliver Clean Code.
Figstack - Your intelligent coding companion
Checkmarx - The industry’s most comprehensive AppSec platform, Checkmarx One is fast, accurate, and accelerates your business.
CodeSee Maps - Maps are auto-generated, self-updating code diagrams.
Veracode - Veracode's application security software products are simpler and more scalable to increase the resiliency of your application infrastructure.