Alternatives and similar repositories for java-sarif

Users that are interested in java-sarif are comparing it to the libraries listed below

• snyk / snyk-maven-plugin
  Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
  ☆82Updated 2 weeks ago
• ASSERT-KTH / sorald
  Automatic repair system for static analysis warnings from SonarQube's SonarJava, TDSC 2022 http://arxiv.org/pdf/2103.12033
  ☆98Updated last month
• MysterAitch / JavaParser-AST-Inspector
  Using JavaParser (https://github.com/JavaParser/JavaParser), browse and navigate the Abstract Syntax Tree (AST) based on the code in your…
  ☆51Updated last month
• mebigfatguy / fb-contrib
  a FindBugs/SpotBugs plugin for doing static code analysis for java code bases
  ☆166Updated this week
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆101Updated this week
• apache / maven-dependency-analyzer
  Apache Maven Dependency Analyzer
  ☆41Updated last month
• JetBrains / spotbugs-intellij-plugin
  The SpotBugs Plugin for IntelliJ IDEA
  ☆84Updated 9 months ago
• CycloneDX / cyclonedx-maven-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
  ☆347Updated this week
• openclover / clover
  This repository contains source code of OpenClover Core as well as its integrations: Clover-for-Ant, Clover-for-Eclipse and Clover-for-ID…
  ☆68Updated 3 weeks ago
• apache / maven-indexer
  Apache Maven Indexer
  ☆68Updated 3 weeks ago
• JetBrains / qodana-sarif
  ☕️ Java library for working with SARIF files by Qodana team
  ☆17Updated last week
• fasten-project / fasten
  Analyse package dependency networks at the call graph level
  ☆96Updated 2 years ago
• mojohaus / license-maven-plugin
  Maven plugin to download and collect license files from project dependencies.
  ☆113Updated this week
• SonarSource / sslr
  SonarSource Language Recognizer
  ☆83Updated last week
• victims / victims-enforcer-legacy
  A rule for the Maven enforcer plugin to check for vulnerable artifacts within a project.
  ☆42Updated 5 years ago
• eclipse-eclemma / eclemma
  　Java Code Coverage for Eclipse IDE
  ☆68Updated 2 weeks ago
• jeantessier / dependency-finder
  A suite of tools for analyzing compiled Java code.
  ☆48Updated 3 weeks ago
• nqzero / permit-reflect
  permit reflective access for java 11
  ☆69Updated 4 years ago
• ShiftLeftSecurity / overflowdb
  ShiftLeft OverflowDB
  ☆131Updated 6 months ago
• getappmap / appmap-java
  AppMap client agent for Java
  ☆86Updated this week
• STAMP-project / pitmp-maven-plugin
  Maven plugin to handle multi module projects for PiTest
  ☆50Updated 2 years ago
• spotbugs / spotbugs-maven-plugin
  Maven Mojo Plug-In to generate reports based on the SpotBugs Analyzer
  ☆97Updated this week
• stevespringett / Alpine
  An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies
  ☆66Updated this week
• olivergondza / maven-jdk-tools-wrapper
  Universal dependency to build against jdk.tools (AKA tools.jar) in a portable way
  ☆38Updated 9 years ago
• package-url / packageurl-java
  Java/JVM implementation of the package url spec
  ☆42Updated 3 weeks ago
• jeremylong / open-vulnerability-cli
  A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…
  ☆153Updated 2 weeks ago
• eclipse-jbom / jbom
  ☆119Updated 7 months ago
• gantsign / kotlin-maven-plugin-tools
  Metadata extractor for Maven plugins written in Kotlin.
  ☆18Updated last year
• apache / maven-resolver
  Apache Maven Artifact Resolver
  ☆140Updated this week
• Stefku / intellij-reference-diagram
  This plugin for IntelliJ IDEA Ultimate provides a diagram showing a reference graph for methods in java classes
  ☆110Updated 4 years ago