Open Source Java Source Code Analysis Tools

The Eclipse Checkstyle plug-in integrates the Checkstyle Java code auditor into the Eclipse IDE. The plug-in provides real-time feedback to the user about violations of rules that check for coding style and possible error prone code constructs.

UCDetector (Unnecessary Code Detector) is a Open Source Eclipse Plugin Tool. UCDetector finds unnecessary (dead) public Java code. It suggests to make code final, protected or private.

Provide metrics calculation and dependency analyzer plugin for the Eclipse platform. Measure metrics with avg and std deviation and detect cycles in package and type dependencies. Continuation of work from http://sourceforge.net/projects/metrics.

Another Open Source Code Analysis Tool

Eclipse Plug-In that determines the Minimal Access Modifier of Java types and methods project and computes the software metrics Inappropriate Generosity with Accessibility of Types (IGAT) and Inappropriate Generosity with Accessibility of Methods (IGAM). The Minimal Access Modifier of a Java type or type member is the most restrictive access modifier that is able to allow all actual usages of the particular type or member from inside a given code base (normally the entire source code of the respective Java project). The metric Inappropriate Generosity with Accessibility of Types (IGAT) indicates the proportion of those types which actual access modifier is more generous than the minimal one relative to the total number of types in a given source code subset. Analog the metric Inappropriate Generosity with Accessibility of Method (IGAM) indicates the proportion of those methods which actual access modifier is more generous than the minimal one relative to the total number of me

CODERU is a java code quality tool to enforce good structure in respect to packages and therefore modules dependencies. CODERU is an achronym and stands for Common Dependency Rules. The CODERU-rules rely on reserved package names and the allowed dependency rules between them expressed in a general way. Unlike other tools forcing you to define allowed or disallowed individual package dependencies CODERU is based on a fixed set of general rules. The dependencies between packages need not be defined explicitly. These general dependency rules are based on common design practices what is reflected in preserved package names: "api", "common", "impl" and "factory". As an integral part of CODERU there is a tool checking your code for rules conformance. See coderu rule description on http://coderu.org .

This project adds custom checks, filters and quickfixes for CheckStyle and Eclipse-CS.

The GroovyStAr ("Groovy Static Analyzer") project describes a new extensible SCA tool for Java and Groovy. The extensibility is reached through a customizable set of Groovy-scripts, each representing a static source code query against the created AST.

Jadecy (Java Dependencies and Cycles) is a Java library to compute dependencies (elements depended on, or depending), strongly connected components, and cycles, in general directed graphs, or classes or packages dependencies graphs parsed from class files (major version <= 52, else does best effort). It uses Tarjan's algorithm for SCCs computation, and Johnson's algorithm for exhaustive cycles computation, with continuations instead of recursion, which allows to handle large graphs (< 2^31 vertices). Since version 1.1, can also compute shortest cycles covering all edges of SCCs. Usage from command line is also possible but with reduced flexibility (cf. JadecyMain class). API entry point for Java code dependencies is the Jadecy class, or DepUnit that makes use of it and is designed for unit tests. API entry point for general graph computations is the net.jadecy.graph package. Requires Java 5 or later. Also available on github: https://github.com/jeffhain/jadecy

Java Cobol Lexer take a cobol source program and return it as a list of lexical tokens. Library takes source code in fixed, free and mixed formats. It recognizes standard Cobol 85.

Jistory is an Eclipse plug-in for history sensitive detection of design anomalies in source code. This plug-in aims to aid the developer in writing better code by using history sensitive heuristics to analyse multiple versions of source code.

Justus is a tool set for Progress 4GL (ABL) Developers. It includes a simplified parser for 4GL, an API to load Profiler data and a Test Coverage Tool.

Kammerjäger is a debugging and testing tool that enables you to prove the correctness of your code. In our C like programming language named "SimPL" you can easily and simply annotate your code with preconditions and assertions (also with forall and exists expressions). We then use Microsofts Z3 theorem prover to prove if the behaviour of your program matches what you expected. The easy to use GUI with an integrated Interpreter and Debugger (with a Stackview and HotCodeReplacement) makes it even easier to write your code and find errors. This project has been developed during a University project called PSE ("Praxis der Softwareentwicklung" / "practical experience in software developement") at the Karlsruhe Institute of Technology (KIT) by Andreas Eberle, Nicolas Loza, Olga Plisovskaya, Andreas Waidler and Michael Zangl. Other Projects and pages of the team's members: www.settlers-android-clone.com (by Andreas Eberle and Michael Zangl) www.andreas-eberle.com

NPEDetector is a tool for statically detecting the dereferences in Java programs that are safe and those that could potentially result in NullPointerException. Designed to be a sound verifier, NPEDetector guarantees the safety of proven dereferences but could imprecisely flag safe dereferences as faulty. NPEDetector is built using WALA, Watson Libraries For Analysis.

Provides tools, supporting quality management or quality assurance for software: Assessment execution (ISO 15504 (SPiCE), AutomotiveSPiCE, CMMi), diff tool calculating sizes (SLoC) of diffs, identification of conditional compilation, and more.

Rapidlogix is an open source application performance management tool optimized for distributed production environments. It allows to increase time-to-market of performance improvements and prevent performance regression

A toolbox for testing SQL. Currently, SQL Spelunk includes code coverage analysis and calling stored procedures in a rolled-back transaction from SQL and JUnit.

Sanity4J simplifies running multiple code analysis tools on Java projects on an ad-hoc basis. It provides a single entry point to run the tools and produces a consolidated report, which presents all findings in an easily accessible format. Homepage: https://sanity4j.github.io/ Project page: https://github.com/Sanity4J/Sanity4J/

Scertify™ Refactoring Assessment is an open source component dedicated to development & QA teams that provides exclusive benchmark data on Software Quality. It automatically detects the portions of an application that can be refactored, gives valuable information on refactoring strategies, and costs. Though IT departments have matured these last 10 years and have now no doubt on the benefits of a continuous control of code quality, three major concerns were still remaining, without any tools able to effectively addressing these needs: * How to understand quality indicators, and how to compare them with the state of the art? * How to measure and manage the gap between the absolute quality level of a software, and a reasonable (reachable) target of quality? * What are the shortest and safe ways to achieve your quality goals?

Moved to Git Hub, https://github.com/SaikiranDaripelli/WsdlAuditor

Code Coverage Tool For Oracle PL/SQL

UCD Analyzer is a tool for analyzing websites usability (as well as accessibility, search engine optimization). It uses set of configurable rules to generate usability report.