#1
CodeChecker is an analyzer tooling, defect database and viewer extension for static and dynamic analyzer tools.
2.6K starsJun 11, 2026 pushdevelopmentPythonStatic Analysis
$ npx skills add Ericsson/codecheckerAlternatives
Cmake Init alternatives for AI agents.
Compare similar skills by workflow fit, trust score, quality, GitHub adoption, maintenance, and install readiness.
Current skill
Cmake Init
The missing CMake project initializer
99
Quality
91
Trust
2.5K
Stars
#2
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
16K starsJun 18, 2026 pushdevelopmentOCamlStatic Analysis
$ npx skills add semgrep/semgrep#3
A static analyzer for Java, C, C++, and Objective-C
16K starsJun 13, 2026 pushdevelopmentOCamlStatic Analysis
$ npx skills add facebook/infer#4
static analysis of C/C++ code
6.6K starsJun 12, 2026 pushdevelopmentC++Static Analysis
$ npx skills add cppcheck-opensource/cppcheck#5
Tfsec is now part of Trivy
7.0K starsMar 25, 2026 pushdevelopmentGoStatic Analysis
$ npx skills add aquasecurity/tfsec#6
Bringing clang-tidy magic to Visual Studio C++ developers.
544 starsApr 16, 2026 pushdevelopmentC#Static Analysis
$ npx skills add Caphyon/clang-power-tools#7
Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
1.3K starsMay 24, 2026 pushdevelopmentGoStatic Analysis
$ npx skills add ZupIT/horusec#8
🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
54K starsJun 12, 2026 pushdevelopmentC++Static Analysis
$ npx skills add WerWolv/ImHex#9
A LLVM-based static analysis framework.
1.0K starsJun 11, 2026 pushdevelopmentC++Static Analysis
$ npx skills add secure-software-engineering/phasar#10
An extremely fast Python linter and code formatter, written in Rust.
48K starsJun 14, 2026 pushdevelopmentRustStatic Analysis
$ npx skills add astral-sh/ruff#11
ShellCheck, a static analysis tool for shell scripts
40K starsJun 11, 2026 pushdevelopmentHaskellStatic Analysis
$ npx skills add koalaman/shellcheck#12
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
21K starsMay 19, 2026 pushdevelopmentJavaScriptStatic Analysis
$ npx skills add MobSF/Mobile-Security-Framework-MobSF#13
The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.
13K starsJun 17, 2026 pushdevelopmentPythonStatic Analysis
$ npx skills add OWASP/mastg#14
A Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)
16K starsApr 2, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add Konloch/bytecode-viewer#15
A tool to enforce Swift style and conventions.
20K starsJun 13, 2026 pushdevelopmentSwiftStatic Analysis
$ npx skills add realm/SwiftLint#16
PHP Static Analysis Tool - discover bugs in your code without running it!
14K starsJun 15, 2026 pushdevelopmentPHPStatic Analysis
$ npx skills add phpstan/phpstanHow to choose
When should you switch?
Use an alternative when it has a clearer install path, higher trust score, fresher maintenance, or better platform fit for your current agent stack. Keep Cmake Init if it already passes your workflow test and repository review.
Next step
Compare top candidates side by side
Open the compare page, test the install commands in a sandbox, and check each repository before using a skill in production.