The Best Apex Static Analysis Tools (Linters/Formatters)
We rank 11 Apex linters, code analyzers, formatters, and more. Find and compare tools like Mega-Linter, PMD, Checkmarx CxSAST, and more. Please rate and review tools that you've used. This helps others find the best tools for their projects.
Help make this list better
Suggest Tools
11 Multi-Language Tools
Mega-Linter
Mega-Linter can handle any type of project thanks to its 70+ embedded Linters, its advanced reporting, runnable on any CI system or locally, with assisted installation and configuration, able to apply formatting and fixes
Fortify
A commercial static analysis platform that supports the scanning of C/C++, C#, VB.NET, VB6, ABAP/BSP, ActionScript, Apex, ASP.NET, Classic ASP, VB Script, Cobol, ColdFusion, HTML, Java, JS, JSP, MXML/Flex, Objective-C, PHP, PL/SQL, T-SQL, Python (2.6, 2.7), Ruby (1.9.3), Swift, Scala, VB, and XML.
Clayton
AI-powered code reviews for Salesforce. Secure your developments, enforce best practice and control your technical debt in real-time.
CodeScan
Code Quality and Security for Salesforce Developers. Made exclusively for the Salesforce platform, CodeScan’s code analysis solutions provide you with total visibility into your code health.
SonarCloud
Multi-language cloud-based static code analysis. History, trends, security hot-spots, pull request analysis and more. Free for open source.
StaticReviewer
Static Reviewer executes code checks according to the most relevant Secure Coding Standards, OWASP, CWE, CVE, CVSS, MISRA, CERT, for 40+ programming languages, using 1000+ built-in validation rules for Security, Deadcode & Best Practices Available a module for Software Composition Analysis (SCA) to find vulnerabilities in open source and third party libraries.
ShiftLeft Scan
Scan is a free open-source DevSecOps platform for detecting security issues in source code and dependencies. It supports a broad range of languages and CI/CD pipelines.
Help make this list better
Suggest Tools
Frequently Asked Questions
What are Apex tools?
Apex is a strongly typed, object-oriented, multitenant-aware programming language that allows developers to execute flow and transaction control statements on the Salesforce Platform. Apex code runs on the Force.com platform, a cloud computing platform as a service (PaaS) developed by Salesforce.com. Apex is used to develop triggers, batch Apex, and Visualforce pages.
What are the best Apex static analysis tools and linters?
The most popular Apex tools ranked by user votes are: Mega-Linter, PMD, Checkmarx CxSAST, Codiga, Codacy.
Which Apex tools are free to use?
Tools with a free plan include Codiga. On top of that, there are also a number of open source like Mega-Linter, PMD, ShiftLeft Scan.