Find products trusted by professionals in your network
See which products are used by connections in your network and those that share similar job titles Sign in to view full insights
Software used to analyze source code before a program is run. - Automate checks with coding rules and industry standards - Detect code errors and vulnerabilities - List issues and suggested fixes - Support multiple programming languages
76 results
Design code for efficient vectorization, threading, and offloading to accelerators.
Snyk is a developer security platform for securing custom code, open source dependencies, containers, and cloud infrastructure all from a single platform. Our solutions enable modern applications to be built securely — empowering developers to own and build security for the whole application, from code and open source to containers & cloud infrastructure. Secure while you code in your IDE: find issues quickly using the scanner, fix issues easily with remediation advice and verify the updated code. Integrate your source code repositories to secure applications: integrate a repository to find issues, prioritize with context, fix and merge. Secure your containers as you build, throughout the SDLC: start fixing containers as soon as you write a Dockerfile, continuously monitor container images throughout their lifecycle and prioritize with context. Secure build & deployment pipelines: Integrate natively with your CI/CD, configure your rules, find and fix issues in your application.
ReSharper is a renowned productivity tool that turns Microsoft Visual Studio into a much better IDE. Both individual .NET developers and teams rely on ReSharper to write and maintain code in a more manageable and enjoyable way, adopt the best coding practices, and deliver higher-quality applications faster.
SonarQube is a self-managed open-source platform that helps developers create code devoid of quality and vulnerability issues. By integrating seamlessly with the top DevOps platforms in the Continuous Integration / Continuous Development (CI/CD) pipeline, SonarQube continuously inspects projects across multiple programming languages, providing immediate status feedback while coding. SonarQube’s quality gates become part of your build pipeline, displaying pass/fail results for new code based on quality profiles you customize to your company standards. Following Sonar’s Clean as You Code methodology guarantees that only software of the highest quality makes it to production. At its core, SonarQube includes a static code analyzer that identifies bugs, security vulnerabilities, hidden secrets, and code smells. The platform guides you through issue resolution, fostering a culture of continuous improvement. With SonarQube, you can achieve secure, reliable, and maintainable software.
SonarCloud is the leading online service to catch Bugs and Security Vulnerabilities in your Pull Requests and throughout your code repositories. Totally free for open-source projects (paid plan for private projects), SonarCloud pairs with existing cloud-based CI/CD workflows, and provides clear resolution guidance for any Code Quality or Security issue it detects. With already more than 4.2 billion lines of code analyzed, SonarCloud empowers development teams of all sizes to write cleaner and safer code across 24 popular and classic programming languages.
See which products are used by connections in your network and those that share similar job titles Sign in to view full insights
PC-lint was the pioneer of static analysis software with its award-winning release in 1985 by Gimpel Software. Since that time, it has been trusted by countless developers to find bugs in projects of all sizes and across all industries. PC-lint Plus, first released in 2017, is the latest offering providing unparalleled analysis capabilities for C and C++.
With its in-depth standards coverage and high-accuracy analysis of C and C++, Helix QAC has been the most trusted static code analyzer for ensuring functional safety and compliance. In addition, Helix QAC is certified for functional safety compliance by SGS-TÜV, including IEC 61508, ISO 26262, EN 50128, IEC 60880, and IEC 62304. While Helix QAC development processes are certified to ISO 9001 | TickIT plus Foundation Level, which is one of the most widely adopted standards to ensure that customers’ requirements are exceeded. For these reasons, Helix QAC is one of the most widely used static code analyzers in tightly-regulated and quality-critical industries.
SonarLint is a free IDE extension that lets you fix coding issues before they exist! Like a spell checker, SonarLint highlights Bugs and Security Vulnerabilities as you write code, with clear remediation guidance so you can fix them before the code is even committed. Across popular IDEs (Eclipse, IntelliJ, Visual Studio, VS Code) and popular programming languages, SonarLint helps all developers write better and safer code!
CodeScan Shield is an automated tool that provides Salesforce developers and administrators the visibility they need to ensure their DevSecOps products are strong, secure, and reliable. This is accomplished through two modules: CodeScan: The static code analysis alerts Salesforce developers the moment an error is introduced to the code repository. Code is checked against more than 600 built-in rules to verify proper structures. CodeScan can also find and flag technical debt that might be lurking unseen in your environment. CodeScan is 100% compatible with Salesforce languages and metadata and supports CWE, SANS, and OWASP standards. OrgScan: Automated scans of SF rules and policies verify adherence to essential considerations and processes. Violations are flagged and recorded in an interactive dashboard for total visibility. This allows administrators to maintain 100% adherence to native and custom Salesforce policies and maintain governance control within their organization
Aikido Security is a developer-friendly software security platform. It scans your code, containers & cloud in 9 different ways, showing you which security issues and vulnerabilities are actually important to solve. We speed up triaging massively by cutting out the false-positives, and making things human-readable.