Contrast-Security-OSS / java-sarifLinks
POJOs generated from the Static Analysis Results Interchange Format (SARIF) JSON schema.
☆24Updated 4 years ago
Alternatives and similar repositories for java-sarif
Users that are interested in java-sarif are comparing it to the libraries listed below
Sorting:
- Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.☆82Updated this week
- Using JavaParser (https://github.com/JavaParser/JavaParser), browse and navigate the Abstract Syntax Tree (AST) based on the code in your…☆51Updated last month
- Automatic repair system for static analysis warnings from SonarQube's SonarJava, TDSC 2022 http://arxiv.org/pdf/2103.12033☆96Updated last week
- a FindBugs/SpotBugs plugin for doing static code analysis for java code bases☆163Updated last week
- Apache Maven Dependency Analyzer☆41Updated 3 weeks ago
- SonarSource Language Recognizer☆82Updated last week
- This repository contains source code of OpenClover Core as well as its integrations: Clover-for-Ant, Clover-for-Eclipse and Clover-for-ID…☆68Updated last month
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆96Updated last week
- ☕️ Java library for working with SARIF files by Qodana team☆17Updated 6 months ago
- The SpotBugs Plugin for IntelliJ IDEA☆80Updated 5 months ago
- Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects☆330Updated last month
- Apache Maven Indexer☆68Updated this week
- Maven plugin to download and collect license files from project dependencies.☆113Updated last week
- Analyse package dependency networks at the call graph level☆95Updated last year
- Apache Maven Artifact Resolver☆138Updated this week
- A suite of tools for analyzing compiled Java code.☆48Updated 3 weeks ago
- DepTrim automatically specializes the software supply chain of dependencies in Maven projects https://arxiv.org/pdf/2302.08370☆15Updated 2 weeks ago
- Sample project with basic Maven + JavaSymbolSolver set up☆40Updated 2 months ago
- ☆122Updated last week
- AppMap client agent for Java☆86Updated last month
- Maven Mojo Plug-In to generate reports based on the SpotBugs Analyzer☆91Updated this week
- Universal dependency to build against jdk.tools (AKA tools.jar) in a portable way☆38Updated 9 years ago
- Java/JVM implementation of the package url spec☆42Updated this week
- DepClean automatically detects and removes unused dependencies in Maven projects 🔗 https://dx.doi.org/10.1007/s10664-020-09914-8)☆280Updated last week
- ShiftLeft OverflowDB☆130Updated 3 months ago
- permit reflective access for java 11☆70Updated 4 years ago
- Plugin for doing static analysis in Intellij using PMD☆73Updated last week
- ☆46Updated this week
- Codyze is a static analyzer for Java, C, C++ based on code property graphs☆89Updated 7 months ago
- Reproducible Central: rebuild instructions for artifacts published to (Maven) Central Repository☆123Updated this week