SonarSource/sonar-html

Static analyzer for HTML used in Sonar ecosystem

What's novel

Static analyzer for HTML used in Sonar ecosystem

Code Analysis

11 files read · 7 rounds

A SonarQube plugin that provides static analysis rules for HTML/JSP/ERB web templates with a sophisticated lexer capable of parsing nested template syntax and complex quote escaping scenarios.

Strengths

Exceptional lexer implementation handling edge cases like nested tags in attributes, multiple template engines, and malformed HTML recovery. Clean visitor pattern architecture with comprehensive test coverage including real-world integration tests. Strong accessibility foundation with well-documented constants referencing authoritative sources.

Weaknesses

Cannot fully evaluate rule implementations without seeing concrete check classes (XSS, ARIA rules). Some deprecated HTML tags are still included in the known list which could be cleaned up.

Score Breakdown

Innovation

5 (25%)

Craft

85 (35%)

Traction

55 (15%)

Scope

91 (25%)

Signal breakdown

Innovation

Not Fork+1

Code Novelty+2

Concept Novelty+0

Craft

Ci+5

Tests+8

Polish+1

Releases+4

Has License+5

Code Quality+28

Readme Quality+12

Recent Activity+7

Structure Quality+5

Commit Consistency+5

Has Dependency Mgmt+5

Traction

Forks+20

Stars+20

Hn Points+0

Watchers+10

Early Traction+0

Devto Reactions+0

Community Contribs+5

Scope

Commits+8

Languages+8

Subsystems+10

Bloat Penalty+0

Completeness+7

Contributors+8

Authored Files+15

Readme Code Match+3

Architecture Depth+7

Implementation Depth+8

Evidence

Commits

239

Contributors

Files

1002

Active weeks

TestsCI/CDREADMELicenseContributing

Repository

Language

Java

Stars

Forks

License

NOASSERTION