User-friendly documentation for the SARIF file format.
☆342Dec 15, 2023Updated 2 years ago
Alternatives and similar repositories for sarif-tutorials
Users that are interested in sarif-tutorials are comparing it to the libraries listed below
Sorting:
- .NET code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs…☆213Jan 7, 2026Updated last month
- OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues☆194Updated this week
- SARIF Microsoft Visual Studio Code extension☆131Feb 14, 2026Updated 2 weeks ago
- POJOs generated from the Static Analysis Results Interchange Format (SARIF) JSON schema.☆27Oct 8, 2025Updated 4 months ago
- A report formatter for Bandit (a Python security analyzer) that produces output in the SARIF format.☆20Sep 19, 2023Updated 2 years ago
- Python classes for the SARIF object model☆45Apr 3, 2024Updated last year
- SARIF Microsoft Visual Studio Viewer Extension☆48Apr 20, 2024Updated last year
- A group of Rust projects for interacting with the SARIF format☆123Feb 20, 2026Updated last week
- Enable Falco to read audit logs from EKS☆11Dec 13, 2020Updated 5 years ago
- ☆28Nov 6, 2025Updated 3 months ago
- a JavaScript plugin to warn users about links to private pages☆10May 23, 2022Updated 3 years ago
- CodeQL model generation for Go.☆17Jun 11, 2021Updated 4 years ago
- Type qualifiers for C☆16Sep 21, 2011Updated 14 years ago
- A React-based component for viewing SARIF files.☆102Nov 12, 2024Updated last year
- JS/TS library to easily build valid SARIF output from your javascript based SAST tools☆18Updated this week
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆14Jul 24, 2025Updated 7 months ago
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆1,082Feb 21, 2026Updated last week
- ☆31May 1, 2025Updated 9 months ago
- vexctl is a tool to attest VEX impact statements☆45Mar 27, 2023Updated 2 years ago
- Modular framework for file information extraction and dependency analysis to generate accurate SBOMs☆39Updated this week
- Code Property Graph: specification, query language, and utilities☆563Feb 6, 2026Updated 3 weeks ago
- This bootcamp is designed to familiarize you with GitHub Advanced Security (GHAS) so that you can better understand how to use it in your…☆67Jul 22, 2024Updated last year
- OWASP Benchmark Project Utilities - Provides scorecard generation and crawling tools for Benchmark style test suites.☆20Updated this week
- An informational website about the Federal Front Door project.☆19Jan 11, 2017Updated 9 years ago
- CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security☆9,253Feb 20, 2026Updated last week
- The official repo of Doop, the declarative pointer analysis framework.☆203Updated this week
- Utility that converts SBOM documents from CycloneDX to SPDX☆33Jan 19, 2024Updated 2 years ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆868Sep 1, 2023Updated 2 years ago
- A library to extract Code Property Graphs from C/C++, Java, Go, Python, Ruby and every other language through LLVM-IR.☆413Updated this week
- Dynamics 365 is releasing Industry Accelerators to enable ISVs, SIs and Partners to rapidly build industry focused solutions on top of ou…☆27Mar 20, 2023Updated 2 years ago
- Scalpel: The Python Static Analysis Framework☆324Mar 28, 2024Updated last year
- A small utility that keeps your Git repositories from leaking secrets, skipping hooks, or quietly drifting out of compliance. It’s design…☆34Updated this week
- Codyze is a static analyzer for Java, C, C++ based on code property graphs☆91Jan 22, 2025Updated last year
- first commit☆23Feb 16, 2026Updated last week
- ☆20Feb 5, 2026Updated 3 weeks ago
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆14,193Feb 20, 2026Updated last week
- Starter workspace to use with the CodeQL extension for Visual Studio Code.☆570Feb 20, 2026Updated last week
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆603Feb 10, 2026Updated 2 weeks ago
- COVA - A static analysis tool to compute path conditions☆40Jul 12, 2025Updated 7 months ago