Alternatives and similar repositories for sarif-js-sdk

Users that are interested in sarif-js-sdk are comparing it to the libraries listed below

• nvuillam / node-sarif-builder
  JS/TS library to easily build valid SARIF output from your javascript based SAST tools
  ☆17Updated this week
• microsoft / eslint-plugin-sdl
  ESLint Plugin focused on common security issues and misconfigurations.
  ☆48Updated 9 months ago
• github / combine-prs
  GitHub Action to combine multiple PRs into a single one
  ☆139Updated 8 months ago
• ossf / package-manager-best-practices
  Collection of security best practices for package managers.
  ☆164Updated 3 years ago
• conventional-commits / parser
  reference implementation of conventionalcommits.org spec
  ☆51Updated 6 months ago
• github / ossar-action
  Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).
  ☆98Updated 3 weeks ago
• fossas / fossa-action
  Find license compliance and security issues in your applications with FOSSA and GitHub Actions.
  ☆61Updated this week
• theupdateframework / tuf-js
  JavaScript implementation of The Update Framework (TUF)
  ☆82Updated 2 weeks ago
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆123Updated last week
• google / tsec
  ☆140Updated 2 weeks ago
• github / lock
  Lock Action to support deployment locking for the branch-deploy Action
  ☆50Updated last week
• oasis-tcs / sarif-spec
  OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues
  ☆188Updated 2 weeks ago
• lirantal / detect-secrets
  A developer-friendly secrets detection tool for CI and pre-commit hooks based on Yelp's detect-secrets
  ☆52Updated 3 years ago
• octoherd / cli
  CLI to run a octoherd scripts on one or multiple repositories
  ☆102Updated this week
• github / evergreen
  GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.ya…
  ☆216Updated last week
• octokit / plugin-throttling.js
  Octokit plugin for GitHub’s recommended request throttling
  ☆123Updated this week
• probot / octokit-plugin-config
  🛠️ Get/set persisted configuration using YAML/JSON files in repositories
  ☆41Updated 2 weeks ago
• CycloneDX / cyclonedx-node-module
  creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
  ☆135Updated last week
• bump-sh / cli
  Bump.sh CLI - Deploy your OpenAPI & AsyncAPI documentations from your CI
  ☆62Updated this week
• github / stale-repos
  Find stale repositories in a GitHub organization.
  ☆190Updated this week
• sigstore / sigstore-js
  Code-signing for npm packages
  ☆172Updated this week
• actions / publish-action
  ☆55Updated last week
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆339Updated last week
• crazy-max / ghaction-github-runtime
  GitHub Action to expose GitHub runtime to the workflow
  ☆83Updated last week
• advanced-security / sbom-generator-action
  ☆16Updated 9 months ago
• chris48s / v8r
  ✔️ A command-line JSON, YAML and TOML validator that's on your wavelength
  ☆38Updated this week
• step-security / secure-repo
  Orchestrate GitHub Actions Security
  ☆301Updated this week
• actions / publish-immutable-action
  A GitHub Action used for publishing an Action to ghcr.io as an OCI container.
  ☆111Updated 3 months ago
• 1Password / op-js
  A JS library powered by the 1Password CLI
  ☆106Updated last month
• ecosyste-ms / packages
  An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.
  ☆55Updated last week