Argues that static analysis can replace runtime type checks in PHP, enabling features like generics without performance cost.
A proposal for using typed request classes in Laravel to combine validation and data representation, eliminating the need for separate DTOs.
Explains the Testing Trophy, a model for JavaScript testing ROI, covering E2E, Integration, Unit, and Static tests.
A tutorial on setting up Semgrep for static code analysis using Docker, with practical examples for writing custom linting rules.
Explores using Semgrep, a static analysis tool, to find security vulnerabilities in Infrastructure as Code like Terraform and Kubernetes configurations.
A guide on using NDepend's static analysis and dependency graphs to quickly understand and identify issues in a new .NET codebase.
Learn how to configure VS Code to highlight unused Python variables and imports using the PyLance language server for cleaner code.
An evaluation of GitHub's CodeQL-based code scanning feature, testing its reliability in detecting vulnerabilities in a sample C codebase.
Integrating the Bandit security tool for automated code checks and improving the user sign-up flow in a Django SaaS project.
A proposal to add generic syntax to PHP for static analysis tools, bypassing runtime performance issues by transpiling.
A survey analyzing the relationship between PHP type systems and project size, with results published on the author's blog.
How using ESLint, Prettier, and TypeScript as static analysis tools can help eliminate common bugs in JavaScript development.
A guide on converting deprecated TSLint rules to ESLint using the @typescript-eslint toolkit for TypeScript projects.
A guide to creating a custom Markdown extension for Django to validate and transform links, improving content management for non-technical writers.
A TSLint maintainer reflects on the project's history, challenges, and the community's transition to ESLint for TypeScript linting.
Explains what code linting is, its benefits for catching errors and enforcing style, and provides a basic setup guide for JavaScript/React.
Introducing ArchUnit, a Java library for testing and enforcing architectural rules and naming conventions in your codebase.
How to use JSDoc comments for TypeScript-like type checking in JavaScript files without a compilation step.
A guide to installing, integrating, and configuring SwiftLint to enforce Swift coding styles and conventions in your Xcode projects.
Explores the trade-offs of dynamic imports in Angular, highlighting tooling challenges and benefits of static analysis for build optimization.
