lgtm.com

Lgtm.com

LGTM.com is a continuous code analysis platform that helps developers detect bugs and vulnerabilities in source code with automated code reviews. It integrates directly with GitHub, GitLab, and Bitbucket, and runs code checks continuously in the background to find issues as new c
Development Code Analysis
lgtm.com image
security code-review static-analysis
Lgtm.com alternatives ➤

LGTM: Continuous Code Analysis for GitHub, GitLab, and Bitbucket | LGTM.com

Automated code reviews with continuous code checks to detect bugs and vulnerabilities in source code, integrated with popular version control systems.

What is Lgtm.com?

LGTM.com is an automated code review and analysis platform for finding security vulnerabilities and quality issues in source code. It uses a combination of deep semantic code analysis and data-flow analysis techniques to find bugs and security weaknesses that could lead to crashes, unauthorized access, or data leakage.

Some key features of LGTM include:

  • Continuous analysis - LGTM integrates directly with GitHub, GitLab and Bitbucket to analyze code commits as they are added, providing rapid feedback to developers.
  • Detects security issues like SQL injections, cross-site scripting, insecure data handling, and more.
  • Finds quality issues like null pointer dereferences, resource leaks, concurrency errors.
  • Supports major languages like Java, C/C++, C#, JavaScript, Python, Go, and more.
  • Provides precise issue details with remediation guidance to help developers fix problems efficiently.
  • Allows setting personalized code quality thresholds and get customizable reports.

LGTM is designed for modern DevOps practices, allowing teams to automatically incorporate code analysis into their workflows. It's used by organizations and developers worldwide to monitor their code health and security.

Lgtm.com Features

Features

  1. Continuous code analysis
  2. Automated code reviews
  3. Integrates with GitHub, GitLab and Bitbucket
  4. Runs code checks continuously
  5. Detects bugs and vulnerabilities

Pricing

  • Freemium
  • Subscription-Based

Pros

Finds issues early

Improves code quality

Easy integration with source control

Automated and continuous

Detects security vulnerabilities

Cons

May generate false positives

Limited language support

Not open source

Requires learning new tools

Official Links

Official Website
https://lgtm.com

The Best Lgtm.com Alternatives

Top Development and Code Analysis and other similar apps like Lgtm.com

Here are some alternatives to Lgtm.com:

Coverity Scan icon
Coverity Scan
PVS-Studio icon
PVS-Studio
Parasoft C/C++test icon
Parasoft C/C++test
Clang Static Analyzer icon
Clang Static Analyzer
Cppcheck icon
Cppcheck
GuardRails icon
GuardRails
Suggest an alternative ❐

Coverity Scan icon

Coverity Scan

Coverity Scan is a free static analysis service provided by Synopsys for the open source community. It helps open source projects find and fix defects in their C/C++ or Java code before releasing their software.Some key benefits of Coverity Scan include:Easy to use: simply configure your build to upload binaries,...
Coverity Scan image
PVS-Studio icon

PVS-Studio

PVS-Studio is a powerful static code analysis tool for C, C++, C#, and Java development. It helps developers detect and fix bugs, security vulnerabilities, and code quality issues early in the development process.PVS-Studio analyzes source code and looks for potential errors such as null pointer dereferences, use of uninitialized variables,...
PVS-Studio image
Parasoft C/C++test icon

Parasoft C/C++test

Parasoft C/C++test is a comprehensive C and C++ development testing solution designed to help teams improve software quality. It automates code analysis and testing tasks to reduce the time and effort required to deliver reliable C/C++ applications.Key features include:Static code analysis to enforce coding guidelines and standardsUnit testing frameworks to...
Parasoft C/C++test image
Clang Static Analyzer icon

Clang Static Analyzer

The Clang Static Analyzer is an open source tool that automatically finds bugs in C, C++, and Objective-C programs. It is part of the Clang compiler infrastructure project. The analyzer works by doing control and data flow analysis on the source code to find potential bugs that could lead to...
Clang Static Analyzer image
Cppcheck icon

Cppcheck

Cppcheck is an open source, static analysis tool for analyzing C and C++ code to detect bugs and security flaws. It is designed to be fast, accurate, and easy to use. Key features of Cppcheck include:Detects a wide range of issues in C/C++ code like memory leaks, null pointer dereferences,...
Cppcheck image
GuardRails icon

GuardRails

GuardRails is a software security platform designed to provide continuous security feedback directly into the software development lifecycle. It integrates security testing and analysis into the tools developers already use so security issues can be detected and remediated early, before reaching production.Key features of GuardRails include:Static application security testing (SAST)...
GuardRails image
Shellcheck icon

Shellcheck

Shellcheck is an open source static analysis and linting tool for shell scripts. It can analyze scripts written in Bash, Dash, ksh, and other shell languages. Shellcheck will analyze a script to identify common bugs and errors such as:Syntax errorsUnused variablesParameter expansion issuesRace conditionsSecurity issuesPortability problemsSome key features and benefits...
Shellcheck image