Top 11 Open-Source Alternatives to Clang Static Analyzer

Product categories

Clean Code Code Analysis Code Coverage Code Quality Code Review DevSecOps Developer Tools Development File Management Generic Programming Language Open Source Security

Summary

The top open-source alternatives to Clang Static Analyzer are Cppcheck, SonarQube, and Shellcheck. One of the criteria for ordering this list is the number of mentions that products have on reliable external sources. You can suggest additional sources through the form here.

Cppcheck Landing Page
1

Cppcheck

Cppcheck is an analysis tool for C/C++ code. It detects the types of bugs that the compilers normally fail to detect. The goal is no false positives. CppCheckDownload cppcheck for free.
Pricing:
- Open Source
#Code Analysis #Code Coverage #Development 10 social mentions
SonarQube Landing Page
2

SonarQube

SonarQube, a core component of the Sonar solution, is an open source, self-managed tool that systematically helps developers and organizations deliver Clean Code.
Pricing:
- Open Source
- Freemium
- Free Trial
- $150.0 / Annually
#Code Analysis #Code Review #Code Coverage 1 social mentions
Shellcheck Landing Page
3

S

Shellcheck

ShellCheck finds bugs in your shell scripts
Pricing:
- Open Source
#Code Analysis #Code Coverage #Code Quality 29 social mentions
Semgrep Landing Page
4

Semgrep

Semgrep is a fast, open-source, static analysis tool for finding bugs and enforcing code standards at editor, commit, and CI time.
Pricing:
- Open Source
#Code Analysis #Code Coverage #Code Quality 7 social mentions
CodeClimate Landing Page
5

CodeClimate

Code Climate provides automated code review for your apps, letting you fix quality and security issues before they hit production. We check every commit, branch and pull request for changes in quality and potential vulnerabilities.
Pricing:
- Open Source
#Code Coverage #Code Quality #Code Analysis 11 social mentions
Snyk Landing Page
6

Snyk

Snyk helps you use open source and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and much more.
Pricing:
- Open Source
#Security #Security Monitoring #Security CI 85 social mentions
Typescript Landing Page
7

Typescript

TypeScript allows developers to compile a superset of JavaScript to plain JavaScript on any browser, host, or operating system.
Pricing:
- Open Source
#Programming Language #OOP #Generic Programming Language 25 social mentions
Devart Code Compare Landing Page
8

Devart Code Compare

Code Compare is an advanced file and folder comparison tool. Its intuitive interface allows you to merge differing files and folders fast and easily! And it's FREE!
Pricing:
- Open Source
- Freemium
- Free Trial
- $69.95 / Annually
#Code Review #Developer Tools #Software Development
FindBugs Landing Page
9

FindBugs

Findbugs is a tool that looks for bugs in Java code. Findbugs finds the bugs by analyzing computer software without actually executing programs. Using this software allows for easy debugging and repairing broken script. Read more about FindBugs.
Pricing:
- Open Source
#Code Coverage #Code Analysis #Code Quality 3 social mentions
SpotBugs Landing Page
10

SpotBugs

Static Application Security Testing (SAST)
Pricing:
- Open Source
#Code Analysis #Code Review #Web Application Security 3 social mentions
JaCoCo Landing Page
11

JaCoCo

JaCoCo is a free Java code coverage library.
Pricing:
- Open Source
#Code Coverage #Code Analysis #Code Quality