Analysis tools logo

22 Rust Static Analysis Tools

Type:
Any

What is Rust?

Rust is a multi-paradigm programming language focused on performance and safety, especially safe concurrency. Rust is syntactically similar to C++, and provides memory safety without using garbage collection.

Rust was originally designed by Graydon Hoare at Mozilla Research, with contributions from Dave Herman, Brendan Eich, and others. The designers refined the language while writing the Servo layout or browser engine, and the Rust compiler. It has gained increasing use in industry, and…

(More info)

What are the best Rust analysis tools?

25
10

cargo-audit

  • Type: cli
657

Audit Cargo.lock for crates with security vulnerabilities reported to the [RustSec Advisory Database](https://github.com/RustSec/advisory-db/).

5

rust-analyzer

  • Type: ide-plugin
4848

Supports functionality such as 'goto definition', type inference, symbol search, reformatting, and code completion, and enables renaming and refactorings.

3

cargo-spellcheck

  • Type: cli
163

Checks all your documentation for spelling and grammar mistakes with hunspell (ready) and languagetool (preview)

3

Rust Language Server

  • Type: ide-plugin
3138

Supports functionality such as 'goto definition', symbol search, reformatting, and code completion, and enables renaming and refactorings.

2

cargo-inspect

  • Type: cli
270

Inspect Rust code without syntactic sugar to see what the compiler does behind the curtains.

2

rustfmt

  • Type: cli
3362

A tool for formatting Rust code according to style guidelines.

1

C2Rust

  • Type: cli
1656

C2Rust helps you migrate C99-compliant code to Rust. The translator (or transpiler) produces unsafe Rust code that closely mirrors the input C code.

1

cargo-expand

  • Type: cli
802

Cargo subcommand to show result of macro expansion and #[derive] expansion applied to the current crate. This is a wrapper around a more verbose compiler command.

1

cargo udeps

  • Type: cli
387

Find unused dependencies in Cargo.toml. It either prints out a "unused crates" line listing the crates, or it prints out a line saying that no crates were unused.

1

electrolysis

  • Type: cli
256

A tool for formally verifying Rust programs by transpiling them into definitions in the Lean theorem prover.

1

MIRAI

  • Type: cli
448

And abstract interpreter operating on Rust's mid-level intermediate language, and providing warnings based on taint analysis.

1

rust-audit

  • Type: cli
102

Audit Rust binaries for known bugs or security vulnerabilities. This works by embedding data about the dependency tree (Cargo.lock) in JSON format into a dedicated linker section of the compiled executable.

1

rustfix

  • Type: cli
560

Read and apply the suggestions made by rustc (and third-party lints, like those offered by clippy).

1

todocheck

  • Type: cli
302

Linter for integrating annotated TODOs with your issue trackers

0

cargo-bloat

  • Type: cli
939

Find out what takes most of the space in your executable. supports ELF (Linux, BSD), Mach-O (macOS) and PE (Windows) binaries.

0

herbie

  • Type: cli
168

Adds warnings or errors to your crate when using a numerically unstable floating point expression.

0

linter-rust

  • Type: cli
42

Linting your Rust-files in Atom, using rustc and cargo.

0

Prusti

  • Type: cli
234

A static verifier for Rust, based on the Viper verification infrastructure. By default Prusti verifies absence of panics by proving that statements such as unreachable!() and panic!() are unreachable.

0

ShiftLeft Scan

  • Type: cli
  • Type: service
158

Scan is a free open-source DevSecOps platform for detecting security issues in source code and dependencies. It supports a broad range of languages and CI/CD pipelines.

Deprecated/unmaintained tools

0

Corrode

  • Type: cli
2037

Semi-automatic translation from C to Rust. Could reveal bugs in the original implementation by showing Rust compiler warnings and errors. Superseded by C2Rust.

0

pfff

  • Type: cli
71

Facebook's tools for code analysis, visualizations, or style-preserving source transformation for many languages.

❤️ Sponsor this project

We are currently looking for partners who want to sponsor hosting and development of the project.

Check out our Github Sponsors page here

Missing an entry? Please let us know.