Alternatives and similar repositories for sarif-python-om

Users that are interested in sarif-python-om are comparing it to the libraries listed below

• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆118Updated last month
• oasis-tcs / sarif-spec
  OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues
  ☆186Updated 2 weeks ago
• microsoft / sarif-tools
  A set of Python command line tools for working with SARIF files produced by code analysis tools
  ☆114Updated last month
• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆75Updated 2 weeks ago
• microsoft / sarif-tutorials
  User-friendly documentation for the SARIF file format.
  ☆311Updated last year
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆119Updated last year
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆204Updated this week
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆148Updated last year
• scanoss / engine
  SCANOSS Open Source Inventory Engine
  ☆39Updated last month
• pypa / advisory-database
  Advisory database for Python packages published on pypi.org
  ☆296Updated this week
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆91Updated this week
• facebook / sapp
  Post Processor for Facebook Static Analysis Tools.
  ☆141Updated last week
• google / oss-fuzz-vulns
  OSS-Fuzz vulnerabilities for OSV.
  ☆156Updated this week
• CycloneDX / cyclonedx-python-lib
  Python implementation of OWASP CycloneDX
  ☆84Updated this week
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…
  ☆121Updated last week
• spdx / cdx2spdx
  Utility that converts SBOM documents from CycloneDX to SPDX
  ☆34Updated last year
• aboutcode-org / univers
  Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…
  ☆37Updated 2 weeks ago
• microsoft / OSSGadget
  Collection of tools for analyzing open source packages.
  ☆346Updated this week
• spdx / tools-python
  A Python library to parse, validate and create SPDX documents.
  ☆219Updated last week
• spdx / spdx-3-model
  The model for the information captured in SPDX version 3 standard.
  ☆87Updated last week
• ossf / package-feeds
  Feed parsing for language package manager updates
  ☆79Updated 7 months ago
• microsoft / sarif-web-component
  A React-based component for viewing SARIF files.
  ☆97Updated 8 months ago
• CycloneDX / sbom-utility
  Utility that provides an API platform for validating, querying and managing BOM data
  ☆116Updated this week
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆75Updated 2 months ago
• duo-labs / narrow
  Low-effort reachability analysis for third-party code vulnerabilities.
  ☆21Updated 2 years ago
• fasten-project / fasten
  Analyse package dependency networks at the call graph level
  ☆95Updated last year
• usnistgov / swid-tools
  ☆13Updated 2 weeks ago
• lyvd / bandit4mal
  A fork of Bandit tool with patterns to identifying malicious python code.
  ☆28Updated 2 years ago
• trailofbits / it-depends
  A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositorie…
  ☆365Updated 7 months ago
• CycloneDX / cyclonedx-python
  CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
  ☆301Updated this week