Alternatives and similar repositories for java-sarif

Users that are interested in java-sarif are comparing it to the libraries listed below

• mebigfatguy / fb-contrib
  a FindBugs/SpotBugs plugin for doing static code analysis for java code bases
  ☆163Updated last week
• snyk / snyk-maven-plugin
  Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
  ☆82Updated 3 weeks ago
• MysterAitch / JavaParser-AST-Inspector
  Using JavaParser (https://github.com/JavaParser/JavaParser), browse and navigate the Abstract Syntax Tree (AST) based on the code in your…
  ☆51Updated last month
• ASSERT-KTH / sorald
  Automatic repair system for static analysis warnings from SonarQube's SonarJava, TDSC 2022 http://arxiv.org/pdf/2103.12033
  ☆97Updated 2 weeks ago
• SonarSource / sslr
  SonarSource Language Recognizer
  ☆82Updated 3 weeks ago
• apache / maven-dependency-analyzer
  Apache Maven Dependency Analyzer
  ☆41Updated 3 weeks ago
• JetBrains / spotbugs-intellij-plugin
  The SpotBugs Plugin for IntelliJ IDEA
  ☆81Updated 6 months ago
• JetBrains / qodana-sarif
  ☕️ Java library for working with SARIF files by Qodana team
  ☆17Updated 7 months ago
• CycloneDX / cyclonedx-maven-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
  ☆332Updated this week
• ShiftLeftSecurity / overflowdb
  ShiftLeft OverflowDB
  ☆130Updated 3 months ago
• openclover / clover
  This repository contains source code of OpenClover Core as well as its integrations: Clover-for-Ant, Clover-for-Eclipse and Clover-for-ID…
  ☆68Updated 2 months ago
• jeantessier / dependency-finder
  A suite of tools for analyzing compiled Java code.
  ☆48Updated last month
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆96Updated this week
• javaparser / javasymbolsolver-maven-sample
  Sample project with basic Maven + JavaSymbolSolver set up
  ☆40Updated 3 months ago
• victims / victims-enforcer-legacy
  A rule for the Maven enforcer plugin to check for vulnerable artifacts within a project.
  ☆42Updated 4 years ago
• SpoonLabs / spoon-examples
  Examples on how to use the Spoon Java source code transformation library
  ☆90Updated 3 years ago
• amitdev / PMD-Intellij
  Plugin for doing static analysis in Intellij using PMD
  ☆73Updated last week
• apache / maven-indexer
  Apache Maven Indexer
  ☆68Updated this week
• fasten-project / fasten
  Analyse package dependency networks at the call graph level
  ☆95Updated last year
• seart-group / java-tree-sitter
  Java bindings for tree-sitter
  ☆54Updated this week
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆89Updated 7 months ago
• mojohaus / license-maven-plugin
  Maven plugin to download and collect license files from project dependencies.
  ☆113Updated this week
• getappmap / appmap-java
  AppMap client agent for Java
  ☆86Updated 2 months ago
• sakalauskas / Java-Static-Analyzer
  Java application written with javaparser framework for analyzing bad smells and class complexity
  ☆16Updated 4 years ago
• olivergondza / maven-jdk-tools-wrapper
  Universal dependency to build against jdk.tools (AKA tools.jar) in a portable way
  ☆38Updated 9 years ago
• javaparser / javaparser-visited
  Code samples for the book "JavaParser: Visited" https://leanpub.com/javaparservisited
  ☆101Updated 2 years ago
• spotbugs / spotbugs-maven-plugin
  Maven Mojo Plug-In to generate reports based on the SpotBugs Analyzer
  ☆92Updated this week
• Stefku / intellij-reference-diagram
  This plugin for IntelliJ IDEA Ultimate provides a diagram showing a reference graph for methods in java classes
  ☆110Updated 3 years ago
• nqzero / permit-reflect
  permit reflective access for java 11
  ☆70Updated 4 years ago
• jenkinsci / analysis-model
  A library to read static analysis reports into a Java object model
  ☆88Updated last week