OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues
☆200Apr 13, 2026Updated 2 weeks ago
Alternatives and similar repositories for sarif-spec
Users that are interested in sarif-spec are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- .NET code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs…☆220Updated this week
- SARIF Microsoft Visual Studio Code extension☆133Feb 14, 2026Updated 2 months ago
- User-friendly documentation for the SARIF file format.☆347Dec 15, 2023Updated 2 years ago
- JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oas…☆33May 27, 2024Updated last year
- A group of Rust projects for interacting with the SARIF format☆130Apr 15, 2026Updated 2 weeks ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A React-based component for viewing SARIF files.☆107Nov 12, 2024Updated last year
- ✅Run Repolinter in your CI pipeline☆12Sep 28, 2021Updated 4 years ago
- Action to detect if a secret is initially detected in a pull request☆20Apr 13, 2026Updated 2 weeks ago
- SARIF Microsoft Visual Studio Viewer Extension☆48Apr 20, 2024Updated 2 years ago
- Kotlin data bindings for the Static Analysis Results Interchange Format (SARIF)☆26Updated this week
- JS/TS library to easily build valid SARIF output from your javascript based SAST tools☆18Updated this week
- Awesome Snyk community contributions, champions, integrations, blogs, tools and more 💜☆48Mar 21, 2022Updated 4 years ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆65Apr 16, 2025Updated last year
- GitHub Secret Scanning Auto Remediator (GSSAR)☆48Apr 15, 2026Updated 2 weeks ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- The International FOSS Law Book, v.2 and onwards☆15Jan 17, 2022Updated 4 years ago
- Actions for running CodeQL analysis☆1,528Updated this week
- GitHub Advanced Security Python Toolkit☆14Updated this week
- A report formatter for Bandit (a Python security analyzer) that produces output in the SARIF format.☆20Sep 19, 2023Updated 2 years ago
- Service to scan licenses from source code☆12Aug 14, 2023Updated 2 years ago
- The official Bugzilla website☆12Mar 20, 2026Updated last month
- CodeQL and Binary Ninja scripts to accompany the blog post☆11Feb 3, 2023Updated 3 years ago
- Simplify and speed up common tasks in your ORT-based FOSS review workflows☆13Apr 16, 2026Updated last week
- Starter workspace to use with the CodeQL extension for Visual Studio Code.☆580Apr 15, 2026Updated 2 weeks ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- A simple Gradle plugin, built on the [Gradle Versions Plugin] with sane no-configuration-defaults and customization options.☆19Nov 11, 2022Updated 3 years ago
- Rust bindings to the Vectorscan high-performance regex library☆23Mar 13, 2026Updated last month
- The Disclosure-CLI provides an easy way to access the public api of the FOSS Disclosure Portal. It is the recommended tool for external s…☆19Apr 14, 2026Updated 2 weeks ago
- Static Analysis Results Interchange Format (SARIF) For OCaml☆14Apr 22, 2026Updated last week
- A PoC exploit for CVE-2022-41622 - a CSRF in F5 BIG-IP control plane that leads to remote root☆22Oct 20, 2022Updated 3 years ago
- fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into one fat SBOM. Thus leveraging each tool'…☆32Oct 24, 2022Updated 3 years ago
- Github Action for integrating Security Alerts with JIRA☆54Apr 20, 2026Updated last week
- Simple DCO check script to be used in any CI☆15Sep 20, 2024Updated last year
- Play with KinD and OIDC volumes☆15Oct 24, 2021Updated 4 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- POJOs generated from the Static Analysis Results Interchange Format (SARIF) JSON schema.☆27Apr 21, 2026Updated last week
- Examples of SPDX files for software combinations☆145Updated this week
- neo4j plugin of ByteCodeDL for the IntelliJ Platform. ByteCodeDL-Neo4j-IDEA-Plugin☆16Dec 28, 2023Updated 2 years ago
- OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…☆214Updated this week
- vexctl is a tool to attest VEX impact statements☆45Mar 27, 2023Updated 3 years ago
- Present ZAProxy results in GitHub Advanced Security☆18May 24, 2024Updated last year
- GitHub actions and GitLab CI templates run various vulnerability scanners, upload the results into SecObserve and make the results of the…☆28Updated this week