SonarQube - A code quality and static code analysis platform that identifies vulnerabilities, bugs, and code smells to improve application security posture. https://github.com/SonarSource/sonarqube