oasis-tcs / sarif-specView external linksLinks
OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues
☆194Feb 6, 2026Updated last week
Alternatives and similar repositories for sarif-spec
Users that are interested in sarif-spec are comparing it to the libraries listed below
Sorting:
- .NET code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs…☆212Jan 7, 2026Updated last month
- SARIF Microsoft Visual Studio Code extension☆132Feb 7, 2026Updated last week
- User-friendly documentation for the SARIF file format.☆340Dec 15, 2023Updated 2 years ago
- A group of Rust projects for interacting with the SARIF format☆122Feb 6, 2026Updated last week
- Go library for SARIF - Static Analysis Results Interchange Format☆80Oct 22, 2025Updated 3 months ago
- A React-based component for viewing SARIF files.☆103Nov 12, 2024Updated last year
- JS/TS library to easily build valid SARIF output from your javascript based SAST tools☆18Updated this week
- Action to detect if a secret is initially detected in a pull request☆19Feb 6, 2026Updated last week
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆61Apr 16, 2025Updated 9 months ago
- SARIF Microsoft Visual Studio Viewer Extension☆48Apr 20, 2024Updated last year
- GH CLI CodeQL Scan Extension☆20Sep 4, 2025Updated 5 months ago
- A PoC exploit for CVE-2022-41622 - a CSRF in F5 BIG-IP control plane that leads to remote root☆21Oct 20, 2022Updated 3 years ago
- Quality domain agnostic regular expression pattern matcher that persists results to SARIF☆40Jul 30, 2025Updated 6 months ago
- ☆20Jun 11, 2024Updated last year
- A GitHub Action to generate a report that contains code frequency metrics and programming languages used per repository belonging to a Gi…☆11Apr 1, 2023Updated 2 years ago
- GitHub action to produce a SBOM report from a given Black Duck project☆12Feb 5, 2026Updated last week
- Template repository for new images☆25Sep 4, 2023Updated 2 years ago
- GitHub Secret Scanning Auto Remediator (GSSAR)☆46Jan 1, 2026Updated last month
- Examples of SPDX files for software combinations☆142Nov 15, 2025Updated 3 months ago
- CodeQL and Binary Ninja scripts to accompany the blog post☆11Feb 3, 2023Updated 3 years ago
- Simplify and speed up common tasks in your ORT-based FOSS review workflows☆13Dec 19, 2025Updated last month
- POSIX sh formatter and client for tldr pages☆12Dec 27, 2022Updated 3 years ago
- Service to scan licenses from source code☆12Aug 14, 2023Updated 2 years ago
- Awesome Snyk community contributions, champions, integrations, blogs, tools and more 💜☆48Mar 21, 2022Updated 3 years ago
- vexctl is a tool to attest VEX impact statements☆45Mar 27, 2023Updated 2 years ago
- Sigstore's Protocol Buffer specifications☆34Updated this week
- Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…☆75Oct 14, 2024Updated last year
- ☆15Feb 6, 2026Updated last week
- Optimize the utilization of GHAS licenses in an enterprise (or organization)☆15Updated this week
- Troglobit Toolbox -- Misc. home brewed code, free to use under GPL/MIT/ISC, see each snippet for license.☆10May 18, 2025Updated 8 months ago
- Test provider for the VS Code project☆15Mar 28, 2024Updated last year
- ☆12Jan 8, 2016Updated 10 years ago
- ☆10May 17, 2023Updated 2 years ago
- Static Analysis Results Interchange Format (SARIF) For OCaml☆14Mar 13, 2025Updated 11 months ago
- Rust bindings to the Vectorscan high-performance regex library☆17Feb 4, 2026Updated last week
- Binaries for the CodeQL CLI☆940Feb 5, 2026Updated last week
- Play with KinD and OIDC volumes☆15Oct 24, 2021Updated 4 years ago
- fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into one fat SBOM. Thus leveraging each tool'…☆33Oct 24, 2022Updated 3 years ago
- Calculate sets of Unicode characters☆19Jun 21, 2025Updated 7 months ago