microsoft / sarif-sdkLinks
.NET code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs/sarif-spec)
☆205Updated last month
Alternatives and similar repositories for sarif-sdk
Users that are interested in sarif-sdk are comparing it to the libraries listed below
Sorting:
- SARIF Microsoft Visual Studio Viewer Extension☆48Updated last year
- Scans your project to determine what components you use☆499Updated last week
- OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues☆187Updated 2 weeks ago
- SARIF Microsoft Visual Studio Code extension☆119Updated 3 weeks ago
- User-friendly documentation for the SARIF file format.☆318Updated last year
- Quality domain agnostic regular expression pattern matcher that persists results to SARIF☆40Updated 3 weeks ago
- A React-based component for viewing SARIF files.☆98Updated 9 months ago
- Collection of tools for analyzing open source packages.☆349Updated 2 weeks ago
- Creates CycloneDX Software Bill of Materials (SBOM) from .NET Projects☆228Updated 2 weeks ago
- DevSkim is a set of IDE plugins, language analyzers, and rules that provide security "linting" capabilities.☆958Updated 3 weeks ago
- ☆66Updated 2 years ago
- Sonar Azure DevOps Services Extensions☆111Updated this week
- ☆18Updated last week
- .NET library to consume and produce CycloneDX Software Bill of Materials (SBOM)☆24Updated 2 weeks ago
- Snyk Visual Studio Extension☆36Updated last week
- The GitHub Action for DevSkim☆41Updated 3 months ago
- Remote build execution technology for use with CMake, MSBuild, Gulp, Microsoft Build Accelerator, and other build engines☆59Updated 4 years ago
- A GitHub Action & Azure Pipelines task for augmenting pull request titles to let reviewers quickly determine PR size and test coverage.☆73Updated this week
- About Infer# is an interprocedural and scalable static code analyzer for C#. Via the capabilities of Facebook's Infer, this tool detects …☆62Updated 2 years ago
- .NET implementation of the package url spec☆16Updated 2 years ago
- VS Code extension for working with Azure Pipelines YAML files☆174Updated last week
- Documentation for NuGet☆158Updated this week
- MsBuild task to warn about insecure NuGet libraries☆97Updated 5 years ago
- Code Search Admin scripts (SQL and PS) for managing a Code Search on-prem instance☆53Updated last year
- Identify known vulnerabilities in .net nuget dependencies☆55Updated last year
- Application for validating API documentation and generating test cases☆42Updated 2 weeks ago
- Contains curations submitted by the community☆134Updated this week
- Tools For Docker, including Visual Studio Provisioning and Publishing☆176Updated last year
- | Public | Octopus Deploy documentation☆12Updated this week
- The CLR Instrumentation Engine is a cooperation profiler that allows running multiple profiling extensions in the same process.☆98Updated 8 months ago