#1
A tool to help eliminate NullPointerExceptions (NPEs) in your Java code with low build-time overhead
4.1K starsJun 15, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add uber/NullAwayAlternatives
Jspecify alternatives for AI agents.
Compare similar skills by workflow fit, trust score, quality, GitHub adoption, maintenance, and install readiness.
Current skill
Jspecify
An artifact of fully-specified annotations to power static-analysis checks, beginning with nullness analysis.
100
Quality
96
Trust
1.1K
Stars
#2
An easy-to-learn/use static analysis framework for Java and Android
1.8K starsJun 9, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add pascal-lab/Tai-e#3
A Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)
16K starsApr 2, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add Konloch/bytecode-viewer#4
Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
8.9K starsJun 16, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add checkstyle/checkstyle#5
T.J. Watson Libraries for Analysis, with front ends for Java, Android, and JavaScript, and many common static program analyses.
857 starsJun 14, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add wala/WALA#6
Continuous Inspection
11K starsJun 12, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add SonarSource/sonarqube#7
🚀Optimizer for mobile applications
5.1K starsMar 15, 2026 pushdevelopmentKotlinStatic Analysis
$ npx skills add didi/booster#8
The modern Java bytecode editor
7.2K starsJun 15, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add Col-E/Recaf#9
Catch common Java mistakes as compile-time errors
7.2K starsJun 15, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add google/error-prone#10
mobsfscan is a static analysis tool that can find insecure code patterns in your Android and iOS source code. Supports Java, Kotlin, Swift, and Objective C Code. mobsfscan uses MobSF static analysis rules and is powered by semgrep and libsast pattern matcher.
761 starsMar 12, 2026 pushdevelopmentPythonStatic Analysis
$ npx skills add MobSF/mobsfscan#11
SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.
3.9K starsJun 13, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add spotbugs/spotbugs#12
Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
1.3K starsMay 24, 2026 pushdevelopmentGoStatic Analysis
$ npx skills add ZupIT/horusec#13
An extensible multilanguage static code analyzer.
5.4K starsJun 12, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add pmd/pmd#14
The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
2.4K starsMar 26, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add find-sec-bugs/find-sec-bugs#15
Appshark is a static taint analysis platform to scan vulnerabilities in an Android app.
1.7K starsMar 4, 2026 pushdevelopmentKotlinStatic Analysis
$ npx skills add bytedance/appshark#16
Soot - A Java optimization framework
3.1K starsMay 29, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add soot-oss/sootHow to choose
When should you switch?
Use an alternative when it has a clearer install path, higher trust score, fresher maintenance, or better platform fit for your current agent stack. Keep Jspecify if it already passes your workflow test and repository review.
Next step
Compare top candidates side by side
Open the compare page, test the install commands in a sandbox, and check each repository before using a skill in production.