Alternatives and similar repositories for bandit-sarif-formatter

Users that are interested in bandit-sarif-formatter are comparing it to the libraries listed below

• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆79Updated last month
• CycloneDX / cyclonedx-python-lib
  Python implementation of OWASP CycloneDX
  ☆90Updated this week
• microsoft / sarif-python-om
  Python classes for the SARIF object model
  ☆44Updated last year
• spdx / tools-python
  A Python library to parse, validate and create SPDX documents.
  ☆227Updated 3 months ago
• pypa / advisory-database
  Advisory database for Python packages published on pypi.org
  ☆306Updated last week
• twu / skjold
  Security audit Python project dependencies against security advisory databases.
  ☆66Updated 2 months ago
• aboutcode-org / license-expression
  Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …
  ☆69Updated 3 months ago
• illikainen / ossaudit
  Audit python packages for known vulnerabilities
  ☆33Updated 3 years ago
• anthonyharrison / sbom4python
  A tool to generate a SBOM (Software Bill of Materials) for an installed Python module
  ☆34Updated last month
• advanced-security / filter-sarif
  GitHub Action for filtering Code Scanning alerts by path and id
  ☆36Updated last year
• psf / sboms-for-python-packages
  Software Bill-of-Materials documents for Python packages
  ☆43Updated 8 months ago
• sigstore / sigstore-python
  A Sigstore client written in Python
  ☆296Updated last week
• RedHatProductSecurity / cvss
  CVSS2/3/4 library with interactive calculator for Python 2 and Python 3
  ☆109Updated 2 months ago
• CycloneDX / cyclonedx-python
  CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
  ☆333Updated this week
• microsoft / sarif-tutorials
  User-friendly documentation for the SARIF file format.
  ☆328Updated last year
• OWASP / www-project-benchmark
  OWASP Foundation Web Respository
  ☆18Updated last week
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆212Updated last week
• usnistgov / swid-tools
  ☆15Updated this week
• advanced-security / secret-scanning-review-action
  Action to detect if a secret is initially detected in a pull request
  ☆17Updated 2 months ago
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆119Updated last year
• sonatype-nexus-community / jake
  Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
  ☆128Updated 4 months ago
• aboutcode-org / univers
  Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…
  ☆37Updated last month
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆122Updated 2 months ago
• microsoft / sarif-tools
  A set of Python command line tools for working with SARIF files produced by code analysis tools
  ☆128Updated 2 months ago
• semgrep / semgrep-action
  This project is deprecated. Use https://github.com/returntocorp/semgrep instead
  ☆74Updated last year
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆96Updated this week
• oasis-tcs / sarif-spec
  OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues
  ☆187Updated 3 weeks ago
• philips-software / license-scanner
  Service to scan licenses from source code
  ☆12Updated 2 years ago
• dlint-py / dlint
  Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.
  ☆170Updated last year
• david-wiggs / codeql-anywhere
  Put the power of CodeQL in your pocket, take it with you to any CI 🚀
  ☆12Updated 2 years ago