oasis-tcs / sarif-specView external linksLinks
OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues
☆194Feb 6, 2026Updated last week
Alternatives and similar repositories for sarif-spec
Users that are interested in sarif-spec are comparing it to the libraries listed below
Sorting:
- .NET code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs…☆212Jan 7, 2026Updated last month
- SARIF Microsoft Visual Studio Code extension☆131Updated this week
- User-friendly documentation for the SARIF file format.☆342Dec 15, 2023Updated 2 years ago
- JavaScript code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oas…☆31May 27, 2024Updated last year
- Go library for SARIF - Static Analysis Results Interchange Format☆80Oct 22, 2025Updated 3 months ago
- A group of Rust projects for interacting with the SARIF format☆122Feb 6, 2026Updated last week
- A React-based component for viewing SARIF files.☆103Nov 12, 2024Updated last year
- ✅Run Repolinter in your CI pipeline☆12Sep 28, 2021Updated 4 years ago
- The International FOSS Law Book, v.2 and onwards☆15Jan 17, 2022Updated 4 years ago
- JS/TS library to easily build valid SARIF output from your javascript based SAST tools☆18Updated this week
- Action to detect if a secret is initially detected in a pull request☆19Updated this week
- SARIF Microsoft Visual Studio Viewer Extension☆48Apr 20, 2024Updated last year
- The Disclosure-CLI provides an easy way to access the public api of the FOSS Disclosure Portal. It is the recommended tool for external s…☆18Dec 29, 2025Updated last month
- GH CLI CodeQL Scan Extension☆20Sep 4, 2025Updated 5 months ago
- A project template containing sensible defaults for starting a new FOSS-project☆17May 30, 2022Updated 3 years ago
- A PoC exploit for CVE-2022-41622 - a CSRF in F5 BIG-IP control plane that leads to remote root☆21Oct 20, 2022Updated 3 years ago
- ☆20Jun 11, 2024Updated last year
- A GitHub Action to generate a report that contains code frequency metrics and programming languages used per repository belonging to a Gi…☆11Apr 1, 2023Updated 2 years ago
- A more realistic demo of a buffer overflow cause by -ffast-math☆15Sep 10, 2022Updated 3 years ago
- GitHub action to produce a SBOM report from a given Black Duck project☆12Feb 5, 2026Updated last week
- Template repository for new images☆25Sep 4, 2023Updated 2 years ago
- Attempts at fuzzing Python unpicklers☆41Mar 24, 2024Updated last year
- GitHub Secret Scanning Auto Remediator (GSSAR)☆46Jan 1, 2026Updated last month
- ☆28May 12, 2025Updated 9 months ago
- Collection of CTF challenges I made☆17Apr 2, 2018Updated 7 years ago
- Examples of SPDX files for software combinations☆142Nov 15, 2025Updated 3 months ago
- POSIX sh formatter and client for tldr pages☆12Dec 27, 2022Updated 3 years ago
- Service to scan licenses from source code☆12Aug 14, 2023Updated 2 years ago
- Simplify and speed up common tasks in your ORT-based FOSS review workflows☆13Dec 19, 2025Updated last month
- CodeQL and Binary Ninja scripts to accompany the blog post☆11Feb 3, 2023Updated 3 years ago
- POJOs generated from the Static Analysis Results Interchange Format (SARIF) JSON schema.☆27Oct 8, 2025Updated 4 months ago
- vexctl is a tool to attest VEX impact statements☆45Mar 27, 2023Updated 2 years ago
- Sigstore's Protocol Buffer specifications☆34Updated this week
- Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…☆77Oct 14, 2024Updated last year
- ☆15Updated this week
- LLM Vulnerable Application☆13Aug 19, 2023Updated 2 years ago
- minimal lisp that compiles to x86☆10Mar 19, 2017Updated 8 years ago
- Static Analysis Results Interchange Format (SARIF) For OCaml☆14Mar 13, 2025Updated 11 months ago
- Test provider for the VS Code project☆15Mar 28, 2024Updated last year