https://en.wikipedia.org/wiki/List_of_tools_for_static_code_analysis
IDEs
Also remember that your favorite IDE might already have something in this field (either natively or via plugins) and that you might be more productive working in an integrated way (when doing self-control of the quality of what you are producing while coding).CI and Static Analysis Tools
For CI it will be important that a command line utility exists (so that one of the integration tasks could be like "generating static analysis reports for the build") and that it generates parseable results (XML, html, text files; so that a build could be set to fail if a certain Code Metrics mandatory rule is being broken).PS. Remember, for some safety-critical projects, the standards you have to work against to will mandate that the produced code respects some very specific rules (e.g. regarding cyclomatic complexity, simply because this code is much harder to verify and validate than simpler code).
