Static code analysis with DeepSource

2020-11-26 2 min read

While listening to the Software Engineering Daily podcast I came across an interview with Jai Pradeesh and Sanket Saurav who are the founders of DeepSource, a modern code analysis tool.

I’m a sucker for these types of tools and willing to try anything that’s low friction and promises to me more productive so I gave it a shot on two of my open source repos - health-stats and blog-analytics.

There have been quite a few of these tools - for example SonarQube and Amazon’s CodeGuru - but DeepSource definitely felt more modern. For one, it has a native integration to GitHub and I was able to get it added to the repos and start seeing results without having to write any code. In addition to the standard suggestions and recommendations DeepSource als has the ability to automatically open pull requests to address simple formatting and style issues.

I’m excited by the innovation in this space. Similar to the way IDEs have gotten smarter and smarter over time with their code completion and suggestions there’s a whole separate set of functionality that can be added through a GitHub integration. GitHub itself has been moving in this direction with Dependabot opening PRs to update libraries and we’ll likely see more and more here as the space evolves.