microsoft / sarif-python-om
Python classes for the SARIF object model
☆43Updated last year
Alternatives and similar repositories for sarif-python-om:
Users that are interested in sarif-python-om are comparing it to the libraries listed below
- SARIF Microsoft Visual Studio Code extension☆114Updated 3 weeks ago
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆142Updated last year
- OSS-Fuzz vulnerabilities for OSV.☆154Updated this week
- A set of Python command line tools for working with SARIF files produced by code analysis tools☆109Updated 4 months ago
- User-friendly documentation for the SARIF file format.☆299Updated last year
- Open Source Vulnerability schema.☆200Updated this week
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆75Updated last week
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆118Updated last year
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆73Updated last month
- Home page of project "KB"☆124Updated last month
- OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues☆182Updated 3 weeks ago
- Post Processor for Facebook Static Analysis Tools.☆140Updated this week
- A community collection of security reviews of open source software components.☆93Updated last year
- The SCANOSS SBOM Workbench graphical user interface to scan and audit your source code.☆52Updated last week
- tree-sitter grammar for the CodeQL language☆27Updated last month
- Analyse package dependency networks at the call graph level☆93Updated last year
- OWASP Foundation Web Respository☆18Updated 2 months ago
- A Python library and command line interface for CVE Services.☆65Updated last month
- Advisory database for Python packages published on pypi.org☆286Updated this week
- Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…☆35Updated 6 months ago
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆65Updated this week
- ☆26Updated last year
- The heart & core of Privado code scanner☆29Updated 5 months ago
- Sharing software supply chain security open source projects☆49Updated 2 years ago
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…☆114Updated last week
- Audit python packages for known vulnerabilities☆32Updated 3 years ago
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆201Updated last week
- A collection of test cases in the Java language. It contains examples for 112 different CWEs.☆54Updated 3 years ago
- Semgrep extension for Visual Studio Code☆59Updated last month
- Codyze is a static analyzer for Java, C, C++ based on code property graphs☆87Updated 3 months ago