Static Analysis Tool for PHP

Static analysis is the process of parsing and searching through code without actually running it. It is the equivalent of someone opening your code base in their IDE and reading through it in detail.

RIPS is a tool I have just come across for doing PHP static analysis. You just need a working Apache stack etc for it to work which any PHP dev is going to have.

http://rips-scanner.sourceforge.net/


Tags: securityphpcodestaticanalysistools