Quit Emailing Yourself

GitHub - antgroup/YASA-Engine: YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, designed to support multiple programming languages. Built on top of UAST, YASA provides a highly accurate static analysis framework.

YASA (Yet Another Static Analyzer) is an open-source project that utilizes a unified intermediate representation called the Unified Abstract Syntax Tree (UAST) to perform static analysis across multiple programming languages. It offers customizable checkers for various analysis tasks and includes built-in taint analysis for security vulnerability detection, while also providing compatibility with CodeQL syntax for ease of use. The project aims to enhance the efficiency and precision of program analysis through a unified framework and AI capabilities.

Saved by tldr-importer · Last saved October 29, 2025 · 2 min read

static-analysis ✓ open-source ✓ + programming-languages security ✓ uast ✓

Links

GitHub - antgroup/YASA-Engine: YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, designed to support multiple programming languages. Built on top of UAST, YASA provides a highly accurate static analysis framework.