Alternatives and similar repositories for java-sarif

Users that are interested in java-sarif are comparing it to the libraries listed below

• snyk / snyk-maven-plugin
  Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
  ☆82Updated this week
• MysterAitch / JavaParser-AST-Inspector
  Using JavaParser (https://github.com/JavaParser/JavaParser), browse and navigate the Abstract Syntax Tree (AST) based on the code in your…
  ☆51Updated last month
• ASSERT-KTH / sorald
  Automatic repair system for static analysis warnings from SonarQube's SonarJava, TDSC 2022 http://arxiv.org/pdf/2103.12033
  ☆96Updated last week
• mebigfatguy / fb-contrib
  a FindBugs/SpotBugs plugin for doing static code analysis for java code bases
  ☆163Updated last week
• apache / maven-dependency-analyzer
  Apache Maven Dependency Analyzer
  ☆41Updated 3 weeks ago
• SonarSource / sslr
  SonarSource Language Recognizer
  ☆82Updated last week
• openclover / clover
  This repository contains source code of OpenClover Core as well as its integrations: Clover-for-Ant, Clover-for-Eclipse and Clover-for-ID…
  ☆68Updated last month
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆96Updated last week
• JetBrains / qodana-sarif
  ☕️ Java library for working with SARIF files by Qodana team
  ☆17Updated 6 months ago
• JetBrains / spotbugs-intellij-plugin
  The SpotBugs Plugin for IntelliJ IDEA
  ☆80Updated 5 months ago
• CycloneDX / cyclonedx-maven-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
  ☆330Updated last month
• apache / maven-indexer
  Apache Maven Indexer
  ☆68Updated this week
• mojohaus / license-maven-plugin
  Maven plugin to download and collect license files from project dependencies.
  ☆113Updated last week
• fasten-project / fasten
  Analyse package dependency networks at the call graph level
  ☆95Updated last year
• apache / maven-resolver
  Apache Maven Artifact Resolver
  ☆138Updated this week
• jeantessier / dependency-finder
  A suite of tools for analyzing compiled Java code.
  ☆48Updated 3 weeks ago
• ASSERT-KTH / deptrim
  DepTrim automatically specializes the software supply chain of dependencies in Maven projects https://arxiv.org/pdf/2302.08370
  ☆15Updated 2 weeks ago
• javaparser / javasymbolsolver-maven-sample
  Sample project with basic Maven + JavaSymbolSolver set up
  ☆40Updated 2 months ago
• eclipse-m2e / m2e-core
  ☆122Updated last week
• getappmap / appmap-java
  AppMap client agent for Java
  ☆86Updated last month
• spotbugs / spotbugs-maven-plugin
  Maven Mojo Plug-In to generate reports based on the SpotBugs Analyzer
  ☆91Updated this week
• olivergondza / maven-jdk-tools-wrapper
  Universal dependency to build against jdk.tools (AKA tools.jar) in a portable way
  ☆38Updated 9 years ago
• package-url / packageurl-java
  Java/JVM implementation of the package url spec
  ☆42Updated this week
• ASSERT-KTH / depclean
  DepClean automatically detects and removes unused dependencies in Maven projects 🔗 https://dx.doi.org/10.1007/s10664-020-09914-8)
  ☆280Updated last week
• ShiftLeftSecurity / overflowdb
  ShiftLeft OverflowDB
  ☆130Updated 3 months ago
• nqzero / permit-reflect
  permit reflective access for java 11
  ☆70Updated 4 years ago
• amitdev / PMD-Intellij
  Plugin for doing static analysis in Intellij using PMD
  ☆73Updated last week
• eclipse-jdt / eclipse.jdt.ui
  ☆46Updated this week
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆89Updated 7 months ago
• jvm-repo-rebuild / reproducible-central
  Reproducible Central: rebuild instructions for artifacts published to (Maven) Central Repository
  ☆123Updated this week