microsoft / sarif-python-om
Python classes for the SARIF object model
☆41Updated 7 months ago
Related projects ⓘ
Alternatives and complementary repositories for sarif-python-om
- SARIF Microsoft Visual Studio Code extension☆111Updated 3 weeks ago
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆141Updated 7 months ago
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆109Updated 11 months ago
- OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues☆168Updated 3 weeks ago
- Post Processor for Facebook Static Analysis Tools.☆133Updated this week
- User-friendly documentation for the SARIF file format.☆281Updated 10 months ago
- A set of Python command line tools for working with SARIF files produced by code analysis tools☆90Updated last month
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆70Updated last week
- OSS-Fuzz vulnerabilities for OSV.☆132Updated this week
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆71Updated last week
- A report formatter for Bandit (a Python security analyzer) that produces output in the SARIF format.☆18Updated last year
- Go library for sarif - Static Analysis Results Interchange Format☆66Updated 3 months ago
- A React-based component for viewing SARIF files.☆83Updated this week
- A community collection of security reviews of open source software components.☆92Updated 8 months ago
- Analyse package dependency networks at the call graph level☆92Updated 11 months ago
- Utility that converts SBOM documents from CycloneDX to SPDX☆29Updated 9 months ago
- Open Source Vulnerability schema.☆184Updated this week
- A Python library and command line interface for CVE Services.☆58Updated last week
- A place to systematically store software bill of materials (SBOM) documents.☆44Updated last year
- Home page of project "KB"☆113Updated last week
- PURL to CPE Relationship mapping project.☆76Updated this week
- CVSS2/3/4 library with interactive calculator for Python 2 and Python 3☆87Updated last week
- A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositorie…☆331Updated 7 months ago
- A web based tool for working with CycloneDX BOMs☆30Updated 2 months ago
- Collection of tools for analyzing open source packages.☆314Updated 3 weeks ago
- Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…☆32Updated 3 weeks ago
- [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…☆80Updated 6 months ago
- Python implementation of OWASP CycloneDX☆69Updated this week
- Feed parsing for language package manager updates☆71Updated this week
- A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain☆86Updated 9 months ago