#1
Static analysis for GitHub Actions
5.6K starsJun 14, 2026 pushdevelopmentRustStatic Analysis
$ npx skills add zizmorcore/zizmorAlternatives
Gitleaks Action alternatives for AI agents.
Compare similar skills by workflow fit, trust score, quality, GitHub adoption, maintenance, and install readiness.
Current skill
Gitleaks Action
Protect your secrets using Gitleaks-Action
74
Quality
76
Trust
600
Stars
#2
Go security checker
8.9K starsJun 15, 2026 pushdevelopmentGoStatic Analysis
$ npx skills add securego/gosec#3
An easy-to-learn/use static analysis framework for Java and Android
1.8K starsJun 9, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add pascal-lab/Tai-e#4
Security risk analysis for Kubernetes resources
1.5K starsJun 15, 2026 pushdevelopmentGoStatic Analysis
$ npx skills add controlplaneio/kubesec#5
Node.js dependency tracing utility
1.6K starsJun 9, 2026 pushdevelopmentJavaScriptStatic Analysis
$ npx skills add vercel/nft#6
ShellCheck, a static analysis tool for shell scripts
40K starsJun 11, 2026 pushdevelopmentHaskellStatic Analysis
$ npx skills add koalaman/shellcheck#7
A tool to enforce Swift style and conventions.
20K starsJun 13, 2026 pushdevelopmentSwiftStatic Analysis
$ npx skills add realm/SwiftLint#8
A static analyzer for Java, C, C++, and Objective-C
16K starsJun 13, 2026 pushdevelopmentOCamlStatic Analysis
$ npx skills add facebook/infer#9
PHP Static Analysis Tool - discover bugs in your code without running it!
14K starsJun 15, 2026 pushdevelopmentPHPStatic Analysis
$ npx skills add phpstan/phpstan#10
A tool to automatically fix PHP Coding Standards issues
14K starsJun 15, 2026 pushdevelopmentPHPStatic Analysis
$ npx skills add PHP-CS-Fixer/PHP-CS-Fixer#11
A PHP parser written in PHP
17K starsFeb 26, 2026 pushdevelopmentPHPStatic Analysis
$ npx skills add nikic/PHP-Parser#12
Continuous Inspection
11K starsJun 12, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add SonarSource/sonarqube#13
Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
8.9K starsJun 16, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add checkstyle/checkstyle#14
Dockerfile linter, validate inline bash, written in Haskell
12K starsJun 11, 2026 pushdevelopmentHaskellStatic Analysis
$ npx skills add hadolint/hadolint#15
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
21K starsMay 19, 2026 pushdevelopmentJavaScriptStatic Analysis
$ npx skills add MobSF/Mobile-Security-Framework-MobSF#16
Catch common Java mistakes as compile-time errors
7.2K starsJun 15, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add google/error-proneHow to choose
When should you switch?
Use an alternative when it has a clearer install path, higher trust score, fresher maintenance, or better platform fit for your current agent stack. Keep Gitleaks Action if it already passes your workflow test and repository review.
Next step
Compare top candidates side by side
Open the compare page, test the install commands in a sandbox, and check each repository before using a skill in production.