#1
Go security checker
8.9K starsJun 15, 2026 pushdevelopmentGoStatic Analysis
$ npx skills add securego/gosecAlternatives
Zizmor alternatives for AI agents.
Compare similar skills by workflow fit, trust score, quality, GitHub adoption, maintenance, and install readiness.
Current skill
Zizmor
Static analysis for GitHub Actions
100
Quality
94
Trust
5.6K
Stars
#2
Flowistry is an IDE plugin for Rust that helps you focus on relevant code.
3.1K starsMay 22, 2026 pushdevelopmentRustStatic Analysis
$ npx skills add willcrichton/flowistry#3
💎 Code quality CLI for universal linting, auto-formatting, security scanning, and maintainability
3.1K starsJun 9, 2026 pushdevelopmentRustStatic Analysis
$ npx skills add qltysh/qlty#4
An extremely fast Python linter and code formatter, written in Rust.
48K starsJun 14, 2026 pushdevelopmentRustStatic Analysis
$ npx skills add astral-sh/ruff#5
A static analysis security vulnerability scanner for Ruby on Rails applications
7.2K starsJun 15, 2026 pushdevelopmentRubyStatic Analysis
$ npx skills add presidentbeef/brakeman#6
ShellCheck, a static analysis tool for shell scripts
40K starsJun 11, 2026 pushdevelopmentHaskellStatic Analysis
$ npx skills add koalaman/shellcheck#7
A static analyzer for Java, C, C++, and Objective-C
16K starsJun 13, 2026 pushdevelopmentOCamlStatic Analysis
$ npx skills add facebook/infer#8
A tool to enforce Swift style and conventions.
20K starsJun 13, 2026 pushdevelopmentSwiftStatic Analysis
$ npx skills add realm/SwiftLint#9
PHP Static Analysis Tool - discover bugs in your code without running it!
14K starsJun 15, 2026 pushdevelopmentPHPStatic Analysis
$ npx skills add phpstan/phpstan#10
A tool to automatically fix PHP Coding Standards issues
14K starsJun 15, 2026 pushdevelopmentPHPStatic Analysis
$ npx skills add PHP-CS-Fixer/PHP-CS-Fixer#11
A PHP parser written in PHP
17K starsFeb 26, 2026 pushdevelopmentPHPStatic Analysis
$ npx skills add nikic/PHP-Parser#12
Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
8.9K starsJun 16, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add checkstyle/checkstyle#13
Continuous Inspection
11K starsJun 12, 2026 pushdevelopmentJavaStatic Analysis
$ npx skills add SonarSource/sonarqube#14
Dockerfile linter, validate inline bash, written in Haskell
12K starsJun 11, 2026 pushdevelopmentHaskellStatic Analysis
$ npx skills add hadolint/hadolint#15
A PHP static analysis tool for finding errors and security vulnerabilities in PHP applications
5.9K starsJun 11, 2026 pushdevelopmentPHPStatic Analysis
$ npx skills add vimeo/psalm#16
🔥 ~6x faster, stricter, configurable, extensible, and beautiful drop-in replacement for golint
5.5K starsJun 11, 2026 pushdevelopmentGoStatic Analysis
$ npx skills add mgechev/reviveHow to choose
When should you switch?
Use an alternative when it has a clearer install path, higher trust score, fresher maintenance, or better platform fit for your current agent stack. Keep Zizmor if it already passes your workflow test and repository review.
Next step
Compare top candidates side by side
Open the compare page, test the install commands in a sandbox, and check each repository before using a skill in production.