microsoft / sarif-web-component
A React-based component for viewing SARIF files.
☆91Updated 4 months ago
Alternatives and similar repositories for sarif-web-component:
Users that are interested in sarif-web-component are comparing it to the libraries listed below
- SARIF Microsoft Visual Studio Code extension☆113Updated last week
- User-friendly documentation for the SARIF file format.☆293Updated last year
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆115Updated last year
- OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues☆178Updated 2 weeks ago
- Collection of community-driven CodeQL query, library and extension packs☆144Updated 2 weeks ago
- [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…☆82Updated 10 months ago
- .NET code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs…☆200Updated last week
- Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations☆25Updated 10 months ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆58Updated last week
- Action to detect if a secret is initially detected in a pull request☆15Updated last month
- Collection of tools for analyzing open source packages.☆332Updated this week
- GH CLI CodeQL Scan Extension☆19Updated 5 months ago
- A set of Python command line tools for working with SARIF files produced by code analysis tools☆104Updated 2 months ago
- GitHub Advanced Security Python Toolkit☆13Updated this week
- ☆70Updated last month
- Examples of Custom Secret Scanning Patterns☆157Updated last month
- GitHub Secret Scanning Auto Remediator (GSSAR)☆44Updated last year
- GitHub Advanced Security Pull Request Security Team required review GitHub App☆35Updated 2 weeks ago
- Python classes for the SARIF object model☆43Updated 11 months ago
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆141Updated last year
- Original workshops and staging area for new ones☆13Updated 5 months ago
- Public disclosure channel for security vulnerabilities☆18Updated last year
- creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects☆126Updated last month
- An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…☆25Updated 2 years ago
- This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.☆45Updated last year
- Starter workspace to use with the CodeQL extension for Visual Studio Code.☆515Updated this week
- Integrate CodeQL into CI/CD pipelines, using the CodeQL CLI Bundle for Automated Code Scanning☆19Updated this week
- A BOM repository server for distributing CycloneDX BOMs☆75Updated last year
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆47Updated this week
- GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.☆210Updated 5 months ago