microsoft / sarif-web-component
A React-based component for viewing SARIF files.
☆79Updated last month
Related projects: ⓘ
- SARIF Microsoft Visual Studio Code extension☆110Updated this week
- User-friendly documentation for the SARIF file format.☆275Updated 9 months ago
- OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues☆164Updated 2 weeks ago
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆102Updated 9 months ago
- .NET code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs…☆191Updated 3 weeks ago
- [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…☆80Updated 4 months ago
- Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations☆19Updated 4 months ago
- Collection of tools for analyzing open source packages.☆311Updated 2 months ago
- GitHub Advanced Security Python Toolkit☆12Updated this week
- SARIF Microsoft Visual Studio Viewer Extension☆46Updated 5 months ago
- GH CLI CodeQL Scan Extension☆17Updated this week
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆138Updated 6 months ago
- Action to detect if a secret is initially detected in a PR commit☆11Updated 2 weeks ago
- Python classes for the SARIF object model☆39Updated 5 months ago
- Quality domain agnostic regular expression pattern matcher that persists results to SARIF☆39Updated 8 months ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆49Updated 5 months ago
- ☆65Updated 3 weeks ago
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆38Updated this week
- An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…☆25Updated 2 years ago
- The specification document for the Static Analysis Results Interchange Format (SARIF)☆56Updated 3 years ago
- A set of Python command line tools for working with SARIF files produced by code analysis tools☆87Updated this week
- Collection of community-driven CodeQL query, library and extension packs☆64Updated last month
- Feed parsing for language package manager updates☆71Updated last week
- REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and defau…☆262Updated 2 years ago
- Original workshops and staging area for new ones☆12Updated 2 months ago
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.0, purl, and vers…☆92Updated last week
- Examples of Custom Secret Scanning Patterns☆132Updated 2 months ago
- This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.☆43Updated last year
- CodeQL database manager☆44Updated 7 months ago
- GitHub Advanced Security Policy as Code☆67Updated last week