microsoft/sarif-tools external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

microsoft/sarif-tools

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/microsoft/sarif-tools)

Close

microsoft / sarif-toolsView on GitHubMore

• External links
• Readme badge

A set of Python command line tools for working with SARIF files produced by code analysis tools

☆147Apr 21, 2026Updated 3 weeks ago

Alternatives and similar repositories for sarif-tools

Users that are interested in sarif-tools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• microsoft / sarif-python-om

  View on GitHub
  Python classes for the SARIF object model
  ☆45Apr 3, 2024Updated 2 years ago
• advanced-security / codeql-workshops-staging

  View on GitHub
  Original workshops and staging area for new ones
  ☆16Jul 3, 2025Updated 10 months ago
• mbaluda-org / security_team

  View on GitHub
  ☆10Oct 16, 2025Updated 7 months ago
• david-wiggs / codeql-anywhere

  View on GitHub
  Put the power of CodeQL in your pocket, take it with you to any CI 🚀
  ☆12Oct 27, 2023Updated 2 years ago
• GeekMasher / ghastoolkit

  View on GitHub
  GitHub Advanced Security Python Toolkit
  ☆14May 11, 2026Updated last week
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• EliiseS / terraform-iot-edge-vm

  View on GitHub
  ☆10Sep 28, 2022Updated 3 years ago
• psastras / sarif-rs

  View on GitHub
  A group of Rust projects for interacting with the SARIF format
  ☆131Apr 15, 2026Updated last month
• PaloAltoNetworks / prisma-cloud-go

  View on GitHub
  Prisma Cloud SDK in Go
  ☆18Mar 24, 2025Updated last year
• dassencio / parallel-code-scanning

  View on GitHub
  An example of a GitHub Actions workflow showing how code scanning with CodeQL can be parallelized on monorepos.
  ☆16Dec 14, 2022Updated 3 years ago
• advanced-security / codeql-queries

  View on GitHub
  [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…
  ☆85May 1, 2024Updated 2 years ago
• github / depstubber

  View on GitHub
  Depstubber generates type-correct stubs for Go dependencies, for use in testing
  ☆17Mar 21, 2025Updated last year
• microsoft / sarif-pattern-matcher

  View on GitHub
  Quality domain agnostic regular expression pattern matcher that persists results to SARIF
  ☆40Jul 30, 2025Updated 9 months ago
• jgarvin / Cogflect

  View on GitHub
  A set of cog recipes for C++ reflection
  ☆15Aug 21, 2011Updated 14 years ago
• kondukto-io / semgrep-rules

  View on GitHub
  Custom semgrep rules registry
  ☆14Aug 23, 2022Updated 3 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• microsoft / sarif-web-component

  View on GitHub
  A React-based component for viewing SARIF files.
  ☆107Nov 12, 2024Updated last year
• yzzting / commit_crafter

  View on GitHub
  AI powered tool for Git commit message generator
  ☆12Jul 29, 2025Updated 9 months ago
• tum-i4 / dta-vs-osc

  View on GitHub
  Dynamic Taint Analysis versus Obfuscated Self-Checking
  ☆16Sep 5, 2021Updated 4 years ago
• github / codeql-coding-standards

  View on GitHub
  This repository contains CodeQL queries and libraries which support various Coding Standards.
  ☆202Updated this week
• wahyuhadi / semgrep-server-rules

  View on GitHub
  ☆18Dec 20, 2025Updated 4 months ago
• microsoft / sarif-tutorials

  View on GitHub
  User-friendly documentation for the SARIF file format.
  ☆351Dec 15, 2023Updated 2 years ago
• jessehouwing / actions-semver-checker

  View on GitHub
  This action checks the version tags in your repository to ensure correct semantic versioning behavior.
  ☆13May 11, 2026Updated last week
• parsiya / eslinter

  View on GitHub
  Manual JavaScript Linting is a Bug
  ☆48Mar 6, 2021Updated 5 years ago
• jbelien / phpstan-sarif-formatter

  View on GitHub
  SARIF formatter for PHPStan
  ☆13Mar 1, 2026Updated 2 months ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• JuliaRegistries / RegistryTools.jl

  View on GitHub
  Functionality for modifying Julia package registry files
  ☆12Apr 10, 2026Updated last month
• advanced-security / gh-codeql-scan

  View on GitHub
  GH CLI CodeQL Scan Extension
  ☆20Sep 4, 2025Updated 8 months ago
• advanced-security / codeql-extractor-iac

  View on GitHub
  CodeQL Extractor, Library, and Queries for Infrastructure as Code
  ☆59Apr 27, 2026Updated 3 weeks ago
• vmnguyen / semgrep-rules

  View on GitHub
  My custom semgrep rules
  ☆23Sep 13, 2020Updated 5 years ago
• wolfv / pystring14

  View on GitHub
  C++14 functions matching the interface and behavior of python string methods with std::string, std::string_view and xtl::fixed_string
  ☆11Jul 11, 2018Updated 7 years ago
• felickz / secret-scanning-review-action

  View on GitHub
  Action to detect if a secret is initially detected in a PR commit
  ☆11Jun 19, 2023Updated 2 years ago
• lgmorand / azure-devops-pipeline-decorators

  View on GitHub
  ☆12Oct 23, 2025Updated 6 months ago
• PyFive-RISC-V / pyfive_top_202011

  View on GitHub
  Top level for the November shuttle
  ☆12Nov 20, 2021Updated 4 years ago
• advanced-security / component-detection-dependency-submission-action

  View on GitHub
  This GitHub Action runs the microsoft/component-detection library to automate dependency extraction at build time.
  ☆21May 9, 2026Updated last week
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• bewuethr / shellcheck-action

  View on GitHub
  A GitHub Action to run the shell linter ShellCheck
  ☆10Jan 23, 2026Updated 3 months ago
• devops-kung-fu / lucha

  View on GitHub
  A CLI that scans for sensitive data in source code
  ☆14Mar 22, 2023Updated 3 years ago
• apparebit / demicode

  View on GitHub
  A tool for diagnosing the messy state of fixed-width rendering for Unicode
  ☆15Oct 6, 2025Updated 7 months ago
• SecureStackCo / visualizing-software-supply-chain

  View on GitHub
  A project to visualize the software supply chain
  ☆58Sep 9, 2023Updated 2 years ago
• 0xdea / semgrep-rules

  View on GitHub
  A collection of my Semgrep rules to facilitate vulnerability research.
  ☆811Apr 12, 2026Updated last month
• MythicAgents / bloodhound

  View on GitHub
  Bloodhound agent for Mythic
  ☆23Apr 19, 2025Updated last year
• shundor / python-bandit-scan

  View on GitHub
  GitHub Action for Bandit SAST
  ☆10Feb 3, 2025Updated last year