Analysis tools logo

Best 20 HTML static analysis tools

33

SonarQube

  • Type: service

SonarQube is an open platform to manage code quality.

17

Prettier

  • Type: cli

An opinionated code formatter.

5

Fortify

  • Type: ide-plugin

A commercial static analysis platform that supports the scanning of C/C++, C#, VB.NET, VB6, ABAP/BSP, ActionScript, Apex, ASP.NET, Classic ASP, VB Script, Cobol, ColdFusion, HTML, Java, JS, JSP, MXML/Flex, Objective-C, PHP, PL/SQL, T-SQL, Python (2.6, 2.7), Ruby (1.9.3), Swift, Scala, VB, and XML.

2

Atom-Beautify

  • Type: ide-plugin

Beautify HTML, CSS, JavaScript, PHP, Python, Ruby, Java, C, C++, C#, Objective-C, CoffeeScript, TypeScript, Coldfusion, SQL, and more in Atom editor.

1

Unibeautify

  • Type: cli
  • Type: service

Universal code beautifier with a GitHub app. Supports HTML, CSS, JavaScript, TypeScript, JSX, Vue, C++, Go, Objective-C, Java, Python, PHP, GraphQL, Markdown, and more.

0

Application Inspector

  • Type: service

Commercial Static Code Analysis which generates exploits to verify vulnerabilities.

0

ApplicationInspector

  • Type: cli

Creates reports of over 400 rule patterns for feature detection (e.g. the use of cryptography or version control in apps).

0

Bootlint

  • Type: cli

An HTML linter for Bootstrap projects.

0

CodeFactor

  • Type: service

Automated Code Analysis for repos on GitHub or BitBucket.

0

grunt-bootlint

  • Type: cli

A Grunt wrapper for [Bootlint](https://github.com/twbs/bootlint), the HTML linter for Bootstrap projects.

0

gulp-bootlint

  • Type: cli

A gulp wrapper for [Bootlint](https://github.com/twbs/bootlint), the HTML linter for Bootstrap projects.

0

HTML Tidy

  • Type: cli

Corrects and cleans up HTML and XML documents by fixing markup errors and upgrading legacy code to modern standards.

0

HTMLHint

  • Type: cli

A Static Code Analysis Tool for HTML.

0

Polymer-analyzer

  • Type: cli

A static analysis framework for Web Components.

0

SmartDec Scanner

  • Type: cli

SAST tool which is capable of identifying vulnerabilities and undocumented features. The analyzer scans the source code and executables without debug info (i.e. binaries). Supports: Java/Scala/Kotlin, PHP, C#, JavaScript, TypeScript, VBScript, HTML5, Python, Perl, C/C++, Objective-C/Swift, PL/SQL, T-SQL, ABAP, 1C, Apex, Go, Ruby, Groovy, Delphi, VBA, Visual Basic 6, Solidity, Vyper, COBOL.

0

WhiteHat Application Security Platform

  • Type: cli

WhiteHat Scout (for Developers) combined with WhiteHat Sentinel Source (for Operations) supporting WhiteHat Top 40 and OWASP Top 10.

-2

APPscreener

  • Type: cli

Static code analysis for binary and source code - Java/Scala, PHP, Javascript, C#, PL/SQL, Python, T-SQL, C/C++, ObjectiveC/Swift, Visual Basic 6.0, Ruby, Delphi, ABAP, HTML5 and Solidity.

-2

Checkmarx CxSAST

  • Type: cli

Commercial Static Code Analysis which doesn't require pre-compilation.

Deprecated/unmaintained tools

0

HTML Inspector

  • Type: cli

HTML Inspector is a code quality tool to help you and your team write better markup.

0

pfff

  • Type: cli

Facebook's tools for code analysis, visualizations, or style-preserving source transformation for many languages.

❤️ Sponsor this project

We are currently looking for partners who want to sponsor hosting and development of the project.

Check out our Github Sponsors page here

Missing an entry? Please let us know.

© analysis-tools.dev