Alternatives and similar repositories for sarif-python-om

Users that are interested in sarif-python-om are comparing it to the libraries listed below

• microsoft / sarif-tutorials
  User-friendly documentation for the SARIF file format.
  ☆316Updated last year
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆118Updated 2 weeks ago
• microsoft / sarif-tools
  A set of Python command line tools for working with SARIF files produced by code analysis tools
  ☆115Updated 2 weeks ago
• oasis-tcs / sarif-spec
  OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues
  ☆187Updated this week
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆148Updated last year
• SAP / project-kb
  Home page of project "KB"
  ☆128Updated 4 months ago
• google / oss-fuzz-vulns
  OSS-Fuzz vulnerabilities for OSV.
  ☆160Updated this week
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆77Updated 2 weeks ago
• pypa / advisory-database
  Advisory database for Python packages published on pypi.org
  ☆301Updated last week
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆119Updated last year
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆206Updated this week
• microsoft / OSSGadget
  Collection of tools for analyzing open source packages.
  ☆350Updated last week
• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆77Updated this week
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆91Updated this week
• facebook / sapp
  Post Processor for Facebook Static Analysis Tools.
  ☆142Updated this week
• trailofbits / it-depends
  A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositorie…
  ☆364Updated 7 months ago
• CloudSecurityAlliance / gsd-database
  Global Security Database
  ☆319Updated last year
• microsoft / sarif-web-component
  A React-based component for viewing SARIF files.
  ☆98Updated 8 months ago
• fasten-project / fasten
  Analyse package dependency networks at the call graph level
  ☆95Updated last year
• OWASP / www-project-benchmark
  OWASP Foundation Web Respository
  ☆18Updated last month
• CycloneDX / bom-examples
  A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
  ☆200Updated 3 months ago
• ossf / fuzz-introspector
  Fuzz Introspector -- introspect, extend and optimise fuzzers
  ☆424Updated 2 weeks ago
• spdx / tools-python
  A Python library to parse, validate and create SPDX documents.
  ☆225Updated last month
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆88Updated 6 months ago
• CROSSINGTUD / CryptoAnalysis
  CogniCrypt_SAST: CrySL-to-Static Analysis Compiler
  ☆76Updated this week
• lyvd / bandit4mal
  A fork of Bandit tool with patterns to identifying malicious python code.
  ☆28Updated 2 years ago
• tree-wizard / fuzz-forest
  ☆26Updated 2 years ago
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…
  ☆122Updated last week
• CycloneDX / cyclonedx-python-lib
  Python implementation of OWASP CycloneDX
  ☆84Updated this week
• microsoft / bandit-sarif-formatter
  A report formatter for Bandit (a Python security analyzer) that produces output in the SARIF format.
  ☆19Updated last year