Contrast-Security-OSS / java-sarif
POJOs generated from the Static Analysis Results Interchange Format (SARIF) JSON schema.
☆23Updated 3 years ago
Alternatives and similar repositories for java-sarif:
Users that are interested in java-sarif are comparing it to the libraries listed below
- Using JavaParser (https://github.com/JavaParser/JavaParser), browse and navigate the Abstract Syntax Tree (AST) based on the code in your…☆51Updated this week
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆93Updated this week
- Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.☆80Updated 2 weeks ago
- Automatic repair system for static analysis warnings from SonarQube's SonarJava, TDSC 2022 http://arxiv.org/pdf/2103.12033☆93Updated last week
- ☕️ Java library for working with SARIF files by Qodana team☆16Updated 2 months ago
- Apache Maven Dependency Analyzer☆41Updated 2 weeks ago
- Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …☆69Updated 2 weeks ago
- Java/JVM implementation of the package url spec☆42Updated this week
- This repository contains source code of OpenClover Core as well as its integrations: Clover-for-Ant, Clover-for-Eclipse and Clover-for-ID…☆65Updated 6 months ago
- AppMap client agent for Java☆84Updated 3 weeks ago
- Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…☆73Updated 6 months ago
- ☆114Updated this week
- Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects☆318Updated 3 weeks ago
- A simple Java command-line utility to mirror the entire contents of VulnDB.☆44Updated 4 months ago
- test driver to run JUnit tests isolated in a new JVM☆16Updated 4 months ago
- An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies☆63Updated last week
- Universal dependency to build against jdk.tools (AKA tools.jar) in a portable way☆37Updated 9 years ago
- Plugin for doing static analysis in Intellij using PMD☆71Updated this week
- Apache Maven Indexer☆66Updated 3 weeks ago
- A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…☆144Updated this week
- Kotlin data bindings for the Static Analysis Results Interchange Format (SARIF)☆20Updated this week
- Maven plugin to download and collect license files from project dependencies.☆110Updated this week
- The SpotBugs Plugin for IntelliJ IDEA☆77Updated last month
- ShiftLeft OverflowDB☆120Updated 9 months ago
- Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects☆184Updated this week
- Java bindings for tree-sitter☆38Updated this week
- Maven plugin to handle multi module projects for PiTest☆47Updated last year
- Apache Maven GPG Plugin☆26Updated this week
- Reproducible Central: rebuild instructions for artifacts published to (Maven) Central Repository☆112Updated this week
- A rule for the Maven enforcer plugin to check for vulnerable artifacts within a project.☆40Updated 4 years ago