Home of clean, safe, and secure code
Customizable static code analysis that works in your IDE, CI/CD pipelines and more
Static Code Analysis
Use rules from the Codiga Hub and design your own static code analysis rules in 5 minutes. Codiga static code analysis works in VS Code, JetBrains, VisualStudio, GitHub, Gitlab and Bitbucket.
Works everywhere from your IDE to CI/CD
VS Code, JetBrains, VisualStudio, GitHub, Gitlab and Bitbucket.
Autofix code
Fix vulnerabilities and coding issues in a click
Real-Time
Instantaneous code analysis with fixes in your IDE
Security-focused
OWASP 10, MITRE CWE, Sans/CWE Top 25: we got you covered.
Your code, your Rules
Create your own code analysis rules from your browser in less than 5 minutes.
Your own static code analysis rules
Create, test, and share new code analysis rules
Share your code analysis rules
Share your rules publicly on the Codiga Hub
Real-Time
Instantaneous code analysis with fixes in your IDE
Increase your Team's Code Quality
Share rules and rulesets within your team.
Works everywhere
VS Code, JetBrains, VisualStudio, GitHub, Gitlab and Bitbucket.
Security Analysis
The largest rulesets of analysis rules to make your software safe and secure
OWASP 10 and SANS-CWE25 support
Covers all common threats and software vulnerabilities
Automated Security Fixes
Automatically fix security issues in the IDE
Detect leaked secrets
Say goodbye to leaked SSH keys, API tokens in your code
Infrastructure Code Analysis
Ensure your Terraform and Docker code is safe
Automated Code Reviews
Code reviews are done in seconds, not hours.
Support for more than 12 languages
Support 1800+ rules for 12+ languages
Multi-branches support
Works with the most popular languages and libraries
Support all platforms
GitHub, GitLab, Bitbucket: works anywhere you write code
Feedback in seconds, not minutes
Get fast feedback on your code, merge with confidence
Code Snippets
Create and share smart code snippets with the world or with your team
Quick Start
Step 1 Copy and run this command in your project's root directory
npx @codiga/cli@latest ruleset-add* Requires Node.js installed. If you do not have Node.js, follow our Getting Started documentation or our manual setup.
Step 2 Install a Codiga IDE plugin to view violations in your IDE
Codiga in the Software Development Life Cycle
Codiga offers a birds-eye view of your code quality. The Codiga dashboard reports all important metrics about your code quality, showing the overall number of code violations, duplicates long and complex functions.
Step 1
Write software in your IDE
Codiga detects issues in real-time in your IDE and suggests fixes.
Supported IDE'sStep 2
git hooks
Codiga checks your code before pushing to avoid pushing a branch if there are outstanding issues.
Learn moreStep 3
Code review checks
Codiga analyzes each pull request, flags any code violations, duplicate, long or complex function.
Learn moreStep 4
Code in production
Codiga has the historical analysis of all errors for each commit of your code.
Learn more