diff --git a/readme.md b/readme.md index fa54e33..fca5bff 100644 --- a/readme.md +++ b/readme.md @@ -253,9 +253,10 @@ Static Analysis Security Testing (SAST) tools scan software for vulnerabilities - [Graudit](https://github.com/wireghoul/graudit/) - _Eldar Marcussen_ - Grep source code for potential security flaws with custom or pre-configured regex signatures. - [Hawkeye](https://github.com/hawkeyesec/scanner-cli) - _Hawkeyesec_ - Modularised CLI tool for project security, vulnerability and general risk highlighting. - [LGTM](https://lgtm.com/) - _Semmle_ - Scan and monitor code for security vulnerabilities using custom or built-in CodeQL queries. +- [LucidShark](https://github.com/toniantunovi/lucidshark) - _Toni Antunovic_ - Unified code quality tool designed for AI-generated code workflows. Consolidates linting, type checking, formatting, SAST/SCA/IaC security scanning, testing, coverage analysis, and code duplication detection. Supports 15 languages with MCP integration for Claude Code. - [RIPS](https://www.ripstech.com/) - _RIPS Technologies_ - Automated static analysis for PHP, Java and Node.js projects. - [SemGrep](https://semgrep.dev/) - _r2c_ - Semgrep is a fast, open-source, static analysis tool that finds bugs and enforces code standards at editor, commit, and CI time. -- [SonarLint](https://www.sonarlint.org/) - _SonarSource_ - An IDE plugin that highlights potential security security issues, code quality issues and bugs. +- [SonarLint](https://www.sonarlint.org/) - _SonarSource_ - An IDE plugin that highlights potential security security issues, code quality issues and bugs. - [SonarQube](https://www.sonarqube.org/) - _SonarSource_ - Scan code for security and quality issues with support for a wide variety of languages.