Alternatives and similar repositories for java-sarif

Users that are interested in java-sarif are comparing it to the libraries listed below

• mebigfatguy / fb-contrib
  a FindBugs/SpotBugs plugin for doing static code analysis for java code bases
  ☆169Updated this week
• ASSERT-KTH / sorald
  Automatic repair system for static analysis warnings from SonarQube's SonarJava, TDSC 2022 http://arxiv.org/pdf/2103.12033
  ☆97Updated this week
• snyk / snyk-maven-plugin
  Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
  ☆82Updated 2 months ago
• apache / maven-dependency-analyzer
  Apache Maven Dependency Analyzer
  ☆41Updated last week
• MysterAitch / JavaParser-AST-Inspector
  Using JavaParser (https://github.com/JavaParser/JavaParser), browse and navigate the Abstract Syntax Tree (AST) based on the code in your…
  ☆50Updated 3 weeks ago
• JetBrains / spotbugs-intellij-plugin
  The SpotBugs Plugin for IntelliJ IDEA
  ☆85Updated 11 months ago
• JetBrains / qodana-sarif
  ☕️ Java library for working with SARIF files by Qodana team
  ☆17Updated 3 weeks ago
• jeantessier / dependency-finder
  A suite of tools for analyzing compiled Java code.
  ☆48Updated last week
• fasten-project / fasten
  Analyse package dependency networks at the call graph level
  ☆96Updated 2 years ago
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆103Updated last week
• ASSERT-KTH / deptrim
  DepTrim automatically specializes the software supply chain of dependencies in Maven projects https://arxiv.org/pdf/2302.08370
  ☆15Updated last week
• STAMP-project / test-runner
  test driver to run JUnit tests isolated in a new JVM
  ☆16Updated last year
• apache / maven-indexer
  Apache Maven Indexer
  ☆69Updated 2 weeks ago
• SonarSource / sslr
  SonarSource Language Recognizer
  ☆84Updated last month
• CycloneDX / cyclonedx-maven-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
  ☆356Updated 2 weeks ago
• getappmap / appmap-java
  AppMap client agent for Java
  ☆85Updated last week
• jenkinsci / analysis-model
  A library to read static analysis reports into a Java object model
  ☆89Updated this week
• SpoonLabs / spoon-examples
  Examples on how to use the Spoon Java source code transformation library
  ☆91Updated 3 years ago
• fuzzitdev / javafuzz
  coverage guided fuzz testing for java
  ☆228Updated 4 years ago
• ShiftLeftSecurity / overflowdb
  ShiftLeft OverflowDB
  ☆133Updated 8 months ago
• openclover / clover
  This repository contains source code of OpenClover Core as well as its integrations: Clover-for-Ant, Clover-for-Eclipse and Clover-for-ID…
  ☆68Updated 2 months ago
• package-url / packageurl-java
  Java/JVM implementation of the package url spec
  ☆44Updated 2 months ago
• eclipse-jdt / eclipse.jdt.core
  ☆223Updated this week
• CycloneDX / cyclonedx-gradle-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
  ☆217Updated last week
• UnitTestBot / jacodb
  fast and effective way to access and analyze java bytecode
  ☆32Updated last month
• Stefku / intellij-reference-diagram
  This plugin for IntelliJ IDEA Ultimate provides a diagram showing a reference graph for methods in java classes
  ☆110Updated 4 years ago
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆91Updated last year
• amitdev / PMD-Intellij
  Plugin for doing static analysis in Intellij using PMD
  ☆75Updated last week
• plume-oss / plume
  Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…
  ☆75Updated last year
• victims / victims-enforcer-legacy
  A rule for the Maven enforcer plugin to check for vulnerable artifacts within a project.
  ☆42Updated 5 years ago