Alternatives and similar repositories for java-sarif

Users that are interested in java-sarif are comparing it to the libraries listed below

• snyk / snyk-maven-plugin
  Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
  ☆81Updated 2 months ago
• MysterAitch / JavaParser-AST-Inspector
  Using JavaParser (https://github.com/JavaParser/JavaParser), browse and navigate the Abstract Syntax Tree (AST) based on the code in your…
  ☆51Updated this week
• apache / maven-dependency-analyzer
  Apache Maven Dependency Analyzer
  ☆41Updated last month
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆93Updated last week
• apache / maven-indexer
  Apache Maven Indexer
  ☆67Updated this week
• ASSERT-KTH / sorald
  Automatic repair system for static analysis warnings from SonarQube's SonarJava, TDSC 2022 http://arxiv.org/pdf/2103.12033
  ☆94Updated last week
• victims / victims-enforcer-legacy
  A rule for the Maven enforcer plugin to check for vulnerable artifacts within a project.
  ☆40Updated 4 years ago
• spotbugs / spotbugs-archetype
  Maven archetype to generate project for SpotBugs plugin
  ☆12Updated 2 weeks ago
• getappmap / appmap-java
  AppMap client agent for Java
  ☆85Updated 2 months ago
• package-url / packageurl-java
  Java/JVM implementation of the package url spec
  ☆41Updated this week
• spotbugs / spotbugs-maven-plugin
  Maven Mojo Plug-In to generate reports based on the SpotBugs Analyzer
  ☆88Updated this week
• mebigfatguy / fb-contrib
  a FindBugs/SpotBugs plugin for doing static code analysis for java code bases
  ☆159Updated this week
• amitdev / PMD-Intellij
  Plugin for doing static analysis in Intellij using PMD
  ☆71Updated last week
• CycloneDX / cyclonedx-maven-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
  ☆323Updated last month
• JetBrains / qodana-sarif
  ☕️ Java library for working with SARIF files by Qodana team
  ☆16Updated 3 months ago
• sonatype-nexus-community / scan-gradle-plugin
  Gradle plugin that scans the dependencies of a Gradle project using Sonatype platforms: OSS Index and Lifecycle.
  ☆77Updated 3 weeks ago
• JetBrains / spotbugs-intellij-plugin
  The SpotBugs Plugin for IntelliJ IDEA
  ☆79Updated 3 months ago
• fasten-project / fasten
  Analyse package dependency networks at the call graph level
  ☆93Updated last year
• nqzero / permit-reflect
  permit reflective access for java 11
  ☆68Updated 4 years ago
• stefanneuhaus / dependencycheck-central-mysql-docker
  Self-updating OWASP DependencyCheck Database Server
  ☆16Updated last month
• apache / maven-resolver
  Apache Maven Artifact Resolver
  ☆133Updated this week
• revelc / impsort-maven-plugin
  Java import sorter plugin. Sort your imps!
  ☆57Updated this week
• pmckeown / dependency-track-maven-plugin
  Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …
  ☆69Updated this week
• sonatype / nexus-maven-plugins
  Nexus Maven Plugins
  ☆85Updated last year
• stevespringett / Alpine
  An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies
  ☆63Updated this week
• plume-oss / plume
  Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…
  ☆74Updated 7 months ago
• openclover / clover
  This repository contains source code of OpenClover Core as well as its integrations: Clover-for-Ant, Clover-for-Eclipse and Clover-for-ID…
  ☆66Updated 2 weeks ago
• de-jcup / eclipse-jenkins-editor
  Jenkins Editor - A eclipse plugin to edit "Jenkinsfile" files
  ☆45Updated 7 months ago
• apache / maven-gpg-plugin
  Apache Maven GPG Plugin
  ☆26Updated last week
• jeantessier / dependency-finder
  A suite of tools for analyzing compiled Java code.
  ☆48Updated this week