Alternatives and similar repositories for java-sarif:

Users that are interested in java-sarif are comparing it to the libraries listed below

• MysterAitch / JavaParser-AST-Inspector
  Using JavaParser (https://github.com/JavaParser/JavaParser), browse and navigate the Abstract Syntax Tree (AST) based on the code in your…
  ☆50Updated last week
• apache / maven-dependency-analyzer
  Apache Maven Dependency Analyzer
  ☆42Updated this week
• snyk / snyk-maven-plugin
  Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
  ☆79Updated 7 months ago
• victims / victims-enforcer-legacy
  A rule for the Maven enforcer plugin to check for vulnerable artifacts within a project.
  ☆40Updated 4 years ago
• olivergondza / maven-jdk-tools-wrapper
  Universal dependency to build against jdk.tools (AKA tools.jar) in a portable way
  ☆37Updated 9 years ago
• JetBrains / spotbugs-intellij-plugin
  The SpotBugs Plugin for IntelliJ IDEA
  ☆76Updated 2 weeks ago
• ASSERT-KTH / sorald
  Automatic repair system for static analysis warnings from SonarQube's SonarJava, TDSC 2022 http://arxiv.org/pdf/2103.12033
  ☆94Updated this week
• JetBrains / qodana-sarif
  ☕️ Java library for working with SARIF files by Qodana team
  ☆14Updated last month
• package-url / packageurl-java
  Java/JVM implementation of the package url spec
  ☆30Updated this week
• apache / maven-gpg-plugin
  Apache Maven GPG Plugin
  ☆27Updated this week
• jrialland / ajp-client
  Java implementation of an AJP13 protocol client (aka Apache JServ), allowing to send requests to a servlet container using this protocol.
  ☆30Updated last month
• getappmap / appmap-intellij-plugin
  ☆43Updated this week
• fasten-project / fasten
  Analyse package dependency networks at the call graph level
  ☆93Updated last year
• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆46Updated 2 years ago
• mebigfatguy / fb-contrib
  a FindBugs/SpotBugs plugin for doing static code analysis for java code bases
  ☆158Updated 3 months ago
• getappmap / appmap-java
  AppMap client agent for Java
  ☆84Updated this week
• nqzero / permit-reflect
  permit reflective access for java 11
  ☆68Updated 4 years ago
• apache / maven-indexer
  Apache Maven Indexer
  ☆66Updated this week
• snyk / snyk-intellij-plugin
  Snyk Vulnerability Scanner for IDEs based on the IntelliJ platform
  ☆59Updated this week
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆92Updated this week
• mojohaus / license-maven-plugin
  Maven plugin to download and collect license files from project dependencies.
  ☆110Updated last week
• eclipse-jbom / jbom
  ☆114Updated 9 months ago
• plume-oss / plume
  Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…
  ☆73Updated 5 months ago
• openclover / clover
  This repository contains source code of OpenClover Core as well as its integrations: Clover-for-Ant, Clover-for-Eclipse and Clover-for-ID…
  ☆65Updated 5 months ago
• khmarbaise / maven-it-extension
  Experimental JUnit Jupiter Extension for writing integration tests for Maven plugins/Maven extensions/Maven Core
  ☆90Updated 3 weeks ago
• Inform-Software / sonar-groovy
  SonarQube plugin for Groovy
  ☆60Updated last year
• apache / maven-dependency-tree
  Apache Maven Dependency Tree
  ☆23Updated this week
• jeremylong / open-vulnerability-cli
  A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…
  ☆141Updated this week
• detekt / sarif4k
  Kotlin data bindings for the Static Analysis Results Interchange Format (SARIF)
  ☆22Updated this week
• advanced-security / SARIF-viewer
  JetBrains IDE plugin for displaying SARIF from GHAS or from a local file
  ☆9Updated this week