Contrast-Security-OSS / java-sarifLinks
POJOs generated from the Static Analysis Results Interchange Format (SARIF) JSON schema.
☆24Updated 4 years ago
Alternatives and similar repositories for java-sarif
Users that are interested in java-sarif are comparing it to the libraries listed below
Sorting:
- Using JavaParser (https://github.com/JavaParser/JavaParser), browse and navigate the Abstract Syntax Tree (AST) based on the code in your…☆51Updated 2 weeks ago
- a FindBugs/SpotBugs plugin for doing static code analysis for java code bases☆161Updated this week
- Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.☆81Updated this week
- Apache Maven Dependency Analyzer☆41Updated 3 weeks ago
- Analyse package dependency networks at the call graph level☆95Updated last year
- Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects☆326Updated last month
- The SpotBugs Plugin for IntelliJ IDEA☆79Updated 5 months ago
- Automatic repair system for static analysis warnings from SonarQube's SonarJava, TDSC 2022 http://arxiv.org/pdf/2103.12033☆95Updated this week
- Sample project with basic Maven + JavaSymbolSolver set up☆41Updated last month
- Maven plugin to download and collect license files from project dependencies.☆112Updated last week
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆95Updated last week
- Plugin for doing static analysis in Intellij using PMD☆72Updated this week
- SonarSource Language Recognizer☆81Updated last month
- ShiftLeft OverflowDB☆127Updated 2 months ago
- ☕️ Java library for working with SARIF files by Qodana team☆16Updated 5 months ago
- Apache Maven Artifact Resolver☆136Updated last week
- This repository contains source code of OpenClover Core as well as its integrations: Clover-for-Ant, Clover-for-Eclipse and Clover-for-ID…☆67Updated 3 weeks ago
- A suite of tools for analyzing compiled Java code.☆48Updated last week
- Universal dependency to build against jdk.tools (AKA tools.jar) in a portable way☆38Updated 9 years ago
- A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…☆146Updated last week
- Apache Maven GPG Plugin☆28Updated 2 weeks ago
- Java/JVM implementation of the package url spec☆42Updated 2 weeks ago
- Experimental JUnit Jupiter Extension for writing integration tests for Maven plugins/Maven extensions/Maven Core☆93Updated 2 months ago
- This plugin for IntelliJ IDEA Ultimate provides a diagram showing a reference graph for methods in java classes☆110Updated 3 years ago
- Codyze is a static analyzer for Java, C, C++ based on code property graphs☆88Updated 6 months ago
- Apache Maven Enforcer (Plugin)☆154Updated this week
- ☆121Updated this week
- Apache Maven Javadoc Plugin☆91Updated 2 weeks ago
- Maven Mojo Plug-In to generate reports based on the SpotBugs Analyzer☆90Updated last week
- AppMap client agent for Java☆85Updated 3 weeks ago