microsoft / sarif-js-sdkLinks
JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs/sarif-spec)
☆28Updated last year
Alternatives and similar repositories for sarif-js-sdk
Users that are interested in sarif-js-sdk are comparing it to the libraries listed below
Sorting:
- JS/TS library to easily build valid SARIF output from your javascript based SAST tools☆12Updated this week
- ESLint Plugin focused on common security issues and misconfigurations.☆43Updated 3 months ago
- JavaScript implementation of The Update Framework (TUF)☆80Updated 2 weeks ago
- Find license compliance and security issues in your applications with FOSSA and GitHub Actions.☆53Updated this week
- Octokit plugin to paginate GraphQL Query responses☆52Updated last week
- reference implementation of conventionalcommits.org spec☆49Updated last week
- ☆16Updated 3 months ago
- JavaScript implementation of the package url spec☆28Updated 2 months ago
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆35Updated 2 weeks ago
- Probot & GitHub Action example☆34Updated last week
- ☆50Updated 2 weeks ago
- GitHub action to generate a CycloneDX SBOM for Node.js☆22Updated 4 months ago
- Safely enable 2FA on your CI published packages. Built with ❤️ by The Electron Team☆38Updated 3 weeks ago
- Octokit plugin for GitHub’s recommended request retries☆45Updated last week
- [GitHub] A Command Line ToolKit for GitHub Security Alert.☆27Updated 6 months ago
- Updates an item on a GitHub Projects (beta) board based on a workflow dispatch (or other) event's input.☆28Updated last week
- Lock Action to support deployment locking for the branch-deploy Action☆42Updated 2 weeks ago
- creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects☆128Updated last week
- ☆46Updated 8 months ago
- GitHub Action to combine multiple PRs into a single one☆127Updated 2 months ago
- 🌍 Normalized repository URLs for every package in the npm registry. Updated daily.☆88Updated last week
- A developer-friendly secrets detection tool for CI and pre-commit hooks based on Yelp's detect-secrets☆51Updated 3 years ago
- CLI to run a octoherd scripts on one or multiple repositories☆104Updated this week
- Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).☆96Updated last year
- SARIF Microsoft Visual Studio Code extension☆115Updated last month
- React SPA☆57Updated this week
- Purpose-built security agent for hosted runners☆36Updated 2 weeks ago
- Action for generating SBOM attestations for workflow artifacts☆31Updated last week
- Compare vulnerability scanners results (to make them better!)☆16Updated last month
- Octokit plugin to paginate REST API endpoint responses☆52Updated last week