microsoft / sarif-js-sdkLinks
JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs/sarif-spec)
☆29Updated last year
Alternatives and similar repositories for sarif-js-sdk
Users that are interested in sarif-js-sdk are comparing it to the libraries listed below
Sorting:
- ESLint Plugin focused on common security issues and misconfigurations.☆43Updated 6 months ago
- JS/TS library to easily build valid SARIF output from your javascript based SAST tools☆14Updated this week
- GitHub Action to combine multiple PRs into a single one☆132Updated 5 months ago
- Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.☆94Updated this week
- creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects☆131Updated last week
- reference implementation of conventionalcommits.org spec☆50Updated 3 months ago
- JavaScript implementation of The Update Framework (TUF)☆80Updated last week
- Find license compliance and security issues in your applications with FOSSA and GitHub Actions.☆56Updated this week
- Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).☆96Updated last year
- ☆138Updated last week
- Code-signing for npm packages☆167Updated this week
- Octokit plugin for GitHub’s recommended request throttling☆123Updated last week
- Collection of security best practices for package managers.☆162Updated 2 years ago
- [GitHub] A Command Line ToolKit for GitHub Security Alert.☆27Updated 3 weeks ago
- OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues☆187Updated 2 weeks ago
- Orchestrate GitHub Actions Security☆294Updated last week
- 📦🔖 A GitHub Action for publishing JavaScript Actions☆98Updated 5 months ago
- ☆51Updated this week
- SARIF Microsoft Visual Studio Code extension☆119Updated 2 weeks ago
- Official GitHub Action for OpenSSF Scorecard.☆327Updated this week
- 🛠️ Get/set persisted configuration using YAML/JSON files in repositories☆41Updated last week
- GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.ya…☆204Updated last week
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆35Updated 3 months ago
- Backend for HTTP Observatory on MDN☆78Updated this week
- A developer-friendly secrets detection tool for CI and pre-commit hooks based on Yelp's detect-secrets☆51Updated 3 years ago
- A plugin for TypeDoc that adds coverage badge generation☆14Updated 4 months ago
- Snyk extension for Visual Studio Code☆94Updated last week
- Octokit plugin to paginate REST API endpoint responses☆52Updated last week
- machine-readable, always up-to-date GitHub Webhooks specifications☆245Updated last week
- Find stale repositories in a GitHub organization.☆186Updated this week