Alternatives and similar repositories for sarif-spec

Users that are interested in sarif-spec are comparing it to the libraries listed below

• microsoft / sarif-tutorials
  User-friendly documentation for the SARIF file format.
  ☆325Updated last year
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆121Updated 2 months ago
• microsoft / sarif-web-component
  A React-based component for viewing SARIF files.
  ☆98Updated 10 months ago
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆208Updated last week
• ossf / alpha-omega
  Our mission is to catalyze sustainable improvements to critical open source software projects and ecosystems.
  ☆108Updated this week
• advanced-security / gh-sbom
  Generate SBOMs with gh CLI
  ☆193Updated 4 months ago
• spdx / spdx-spec
  The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.
  ☆342Updated last week
• spdx / spdx-examples
  Examples of SPDX files for software combinations
  ☆136Updated 3 months ago
• semgrep / semgrep-action
  This project is deprecated. Use https://github.com/returntocorp/semgrep instead
  ☆74Updated last year
• microsoft / sarif-tools
  A set of Python command line tools for working with SARIF files produced by code analysis tools
  ☆126Updated last month
• CycloneDX / specification
  OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
  ☆431Updated this week
• spdx / spdx-3-model
  The model for the information captured in SPDX version 3 standard.
  ☆95Updated last week
• github / codeql-coding-standards
  This repository contains CodeQL queries and libraries which support various Coding Standards.
  ☆171Updated this week
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆337Updated this week
• ossf / wg-securing-software-repos
  OpenSSF Working Group on Securing Software Repositories
  ☆121Updated last week
• github / ossar-action
  Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).
  ☆96Updated last year
• clearlydefined / clearlydefined
  Doc, wiki and organizational content for ClearlyDefined
  ☆102Updated 2 months ago
• microsoft / OSSGadget
  Collection of tools for analyzing open source packages.
  ☆349Updated last month
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆119Updated last year
• package-url / purl-spec
  A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby
  ☆892Updated this week
• clearlydefined / service
  The service side of clearlydefined.io
  ☆50Updated this week
• microsoft / sarif-python-om
  Python classes for the SARIF object model
  ☆43Updated last year
• in-toto / attestation
  in-toto Attestation Framework
  ☆299Updated this week
• google / oss-vulnerability-guide
  A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…
  ☆138Updated 2 years ago
• ossf / scorecard-monitor
  Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts
  ☆38Updated 4 months ago
• ossf / wg-supply-chain-integrity
  Our objective is to enable open source maintainers, contributors and end-users to understand and make decisions on the provenance of the …
  ☆189Updated last year
• microsoft / sarif-js-sdk
  JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oas…
  ☆29Updated last year
• advanced-security / secret-scanning-review-action
  Action to detect if a secret is initially detected in a pull request
  ☆17Updated last month
• advanced-security / GSSAR
  GitHub Secret Scanning Auto Remediator (GSSAR)
  ☆46Updated 2 months ago
• google / deps.dev
  Resources for the deps.dev API
  ☆343Updated 2 weeks ago