Alternatives and similar repositories for codeql-coding-standards

Users that are interested in codeql-coding-standards are comparing it to the libraries listed below

• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆121Updated 2 months ago
• oasis-tcs / sarif-spec
  OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues
  ☆187Updated this week
• github / vscode-codeql
  An extension for Visual Studio Code that adds rich language support for CodeQL
  ☆477Updated this week
• advanced-security / filter-sarif
  GitHub Action for filtering Code Scanning alerts by path and id
  ☆36Updated 11 months ago
• microsoft / sarif-tutorials
  User-friendly documentation for the SARIF file format.
  ☆325Updated last year
• github / codespaces-codeql
  Get to know more about the concepts of CodeQL by trying our simple tutorials.
  ☆37Updated last year
• microsoft / sarif-web-component
  A React-based component for viewing SARIF files.
  ☆98Updated 11 months ago
• github / dependency-submission-toolkit
  A TypeScript library for creating dependency snapshots.
  ☆52Updated last week
• github / ghas-jira-integration
  Synchronize GitHub Code Scanning alerts to Jira issues
  ☆92Updated 3 weeks ago
• github / dependabot-action
  Runs Dependabot Updates via GitHub Actions.
  ☆108Updated this week
• google / oss-fuzz-vulns
  OSS-Fuzz vulnerabilities for OSV.
  ☆162Updated this week
• microsoft / sarif-sdk
  .NET code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs…
  ☆207Updated this week
• advanced-security / advanced-security-material
  ☆74Updated last week
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆338Updated this week
• advanced-security / secret-scanning-review-action
  Action to detect if a secret is initially detected in a pull request
  ☆17Updated last month
• spdx / spdx-spec
  The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.
  ☆343Updated last week
• github / codeql-variant-analysis-action
  ☆20Updated this week
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆153Updated last year
• ossf / alpha-omega
  Our mission is to catalyze sustainable improvements to critical open source software projects and ecosystems.
  ☆108Updated this week
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆209Updated this week
• spdx / spdx-3-model
  The model for the information captured in SPDX version 3 standard.
  ☆95Updated 2 weeks ago
• advanced-security / ghas-to-csv
  Play with GHAS API to provide posture data over time
  ☆39Updated this week
• microsoft / sarif-tools
  A set of Python command line tools for working with SARIF files produced by code analysis tools
  ☆128Updated last month
• peter-murray / github-security-report-action
  ☆81Updated last year
• NickLiffen / ghas-enablement
  A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.
  ☆157Updated last year
• advanced-security / sample-codeql-pipeline-config
  Integrate CodeQL into CI/CD pipelines, using the CodeQL CLI Bundle for Automated Code Scanning
  ☆23Updated 2 months ago
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆118Updated last year
• jhutchings1 / Create-ActionsPRs
  This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.
  ☆47Updated 2 years ago
• dependabot / fetch-metadata
  Extract information about the dependencies being updated by a Dependabot-generated PR.
  ☆259Updated 3 weeks ago
• clearlydefined / curated-data
  Contains curations submitted by the community
  ☆135Updated this week