We all know how frustrating bugs and security breaches are when it comes to fixing especially if you develop a web application that is used by many people and one of the most important things we need to take care of is the code quality which should have the highest standards of security.
SensioLabsInsight automatically analyses the code and behaviour on your application on any PHP projects (custom, WordPress, Joomla, Drupal and the list goes on and on). Issues are detected over 100 rules, all defined by experts after years of extensive practice. These guys are behind Symfony framework and Twig Template engine (which I use on my WordPress projects to separate the HTML from the PHP). Bugs and potential security breaches are classified according to their nature from the minor to the critical ones.
Features include, but not limited to:
More than 100 quality checks ranging from security to performance based on our long experience auditing real-world applications.
A dynamic analysis engine that boots your application to find bugs and errors that go unnoticed using static code analysis.
Reported errors include an accurate time estimation to fix them, which allows for a better plan of your project development and technical debt cost reduction.
Hundreds of carefully elaborated documentation pages to explain the exact cause of each error and why it’s considered a bad practice.
Receive a notification whenever the quality of your project changes or a commit introduces new errors and violations.
Invite your team
Add collaborators to your projects, share quality reports and discuss errors and violations using the built-in comment engine.
Find the most common security problems in your code before deploying your application to production with our automated security audits.
Analyze public or private projects, configure GitHub hooks to trigger automatic analyses and create GitHub issues from your application reports.
Seamless Jenkins integration and a full-featured API, SDK and console tools to integrate code analyses with your own tools and services.
Note that while I was doing some checking, I’ve noticed sometimes things that were not really bugs as I knew very well the code, though the PHP code quality checker is displaying everything that could lead to security issues and gives you a better idea what could happen in various situations. If you want to check your PHP project quality, I strongly recommend you to use this tool as you will be surprised to see that, often, you have more issues that you initially thought of.