Alternatives and similar repositories for sarif-spec

Users that are interested in sarif-spec are comparing it to the libraries listed below

• microsoft / sarif-tutorials
  User-friendly documentation for the SARIF file format.
  ☆309Updated last year
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆117Updated 2 weeks ago
• microsoft / sarif-sdk
  .NET code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs…
  ☆204Updated 3 weeks ago
• microsoft / sarif-web-component
  A React-based component for viewing SARIF files.
  ☆97Updated 7 months ago
• sarif-standard / sarif-spec-v1
  The specification document for the Static Analysis Results Interchange Format (SARIF)
  ☆57Updated 4 years ago
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆202Updated 3 weeks ago
• CycloneDX / specification
  OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
  ☆402Updated this week
• owenrumney / go-sarif
  Go library for SARIF - Static Analysis Results Interchange Format
  ☆79Updated this week
• ossf / alpha-omega
  Our mission is to catalyze sustainable improvements to critical open source software projects and ecosystems.
  ☆105Updated 2 weeks ago
• microsoft / sarif-js-sdk
  JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oas…
  ☆28Updated last year
• github / codeql-coding-standards
  This repository contains CodeQL queries and libraries which support various Coding Standards.
  ☆154Updated this week
• google / deps.dev
  Resources for the deps.dev API
  ☆325Updated last week
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆311Updated last week
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆119Updated last year
• microsoft / OSSGadget
  Collection of tools for analyzing open source packages.
  ☆342Updated 3 weeks ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆145Updated last year
• advanced-security / filter-sarif
  GitHub Action for filtering Code Scanning alerts by path and id
  ☆30Updated 8 months ago
• in-toto / attestation
  in-toto Attestation Framework
  ☆278Updated last week
• github / ossar-action
  Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).
  ☆97Updated last year
• microsoft / sarif-tools
  A set of Python command line tools for working with SARIF files produced by code analysis tools
  ☆111Updated 3 weeks ago
• ossf / sbom-everywhere
  Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
  ☆93Updated last week
• GeekMasher / advanced-security-compliance
  GitHub Advance Security Compliance Action
  ☆133Updated 2 years ago
• spdx / spdx-examples
  Examples of SPDX files for software combinations
  ☆132Updated this week
• advanced-security / gh-sbom
  Generate SBOMs with gh CLI
  ☆187Updated 3 weeks ago
• ossf / package-feeds
  Feed parsing for language package manager updates
  ☆79Updated 6 months ago
• jhutchings1 / Create-ActionsPRs
  This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.
  ☆46Updated 2 years ago
• advanced-security / GSSAR
  GitHub Secret Scanning Auto Remediator (GSSAR)
  ☆44Updated 3 weeks ago
• advanced-security / policy-as-code
  GitHub Advanced Security Policy as Code
  ☆83Updated 2 weeks ago
• google / licenseclassifier
  A License Classifier
  ☆328Updated 4 months ago
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆108Updated this week