sarif-standard / sarif-spec-v1
The specification document for the Static Analysis Results Interchange Format (SARIF)
☆56Updated 3 years ago
Related projects: ⓘ
- .NET code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs…☆191Updated 3 weeks ago
- OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues☆164Updated 2 weeks ago
- Quality domain agnostic regular expression pattern matcher that persists results to SARIF☆39Updated 8 months ago
- SARIF Microsoft Visual Studio Code extension☆110Updated this week
- A React-based component for viewing SARIF files.☆79Updated last month
- create call graphs for .NET projects using the Roslyn infrastructure for parsing .NET bytecode☆12Updated 7 years ago
- Remote build execution technology for use with CMake, MSBuild, Gulp, Microsoft Build Accelerator, and other build engines☆60Updated 3 years ago
- MsBuild task to warn about insecure NuGet libraries☆97Updated 4 years ago
- Automata and transducer library for .NET☆78Updated 4 years ago
- User-friendly documentation for the SARIF file format.☆275Updated 9 months ago
- An engine for searching patterns in the source code, based on Unified AST or UST. At present time C#, Java, PHP, PL/SQL, T-SQL, MySql, a…☆59Updated 4 years ago
- SARIF Microsoft Visual Studio Viewer Extension☆46Updated 5 months ago
- A binary static analysis tool that provides security and correctness results for Windows Portable Executable and *nix ELF binary formats☆768Updated last month
- About Infer# is an interprocedural and scalable static code analyzer for C#. Via the capabilities of Facebook's Infer, this tool detects …☆62Updated last year
- DevSkim plugin for VS Code.☆38Updated 4 years ago
- A static verifier for concurrent C programs☆129Updated 3 years ago
- An open-source implementation of VsixSignTool.☆37Updated 3 months ago
- Fuzzer for the .NET toolchains, developed as a project for the 2018 Language-Based Security course at Aarhus University.☆245Updated 3 weeks ago
- Collection of tools for analyzing open source packages.☆311Updated 2 months ago
- SEViz (Symbolic Execution VisualIZer) is a tool for visualizing symbolic execution-based test generation☆20Updated 8 years ago
- T2 Temporal Prover☆93Updated 6 years ago
- KLEE in the browser☆50Updated 3 months ago
- Common Compiler Infrastructure☆101Updated 5 years ago
- Python classes for the SARIF object model☆39Updated 5 months ago
- .NET library for logging data via EventSource/ETW☆86Updated last year
- The MSR Ironclad project builds provably secure and reliable systems.☆241Updated last year
- Static analysis framework for .NET programs.☆28Updated 3 years ago
- .NET ASP.NET Security Analyser - Consolidation of multiple ASP.NET OWASP tools☆16Updated 9 years ago
- DevSkim plugin for Visual Studio.☆54Updated 4 years ago
- BPerf is a Cloud Profiling system used by Bing.com based on CoreCLR Profiling APIs & Event Tracing for Windows.☆74Updated last year