sarif-report

There are 2 repositories under sarif-report topic.

• megalinter

  oxsecurity / megalinter

  🦙 MegaLinter analyzes 50 languages, 22 formats, 21 tooling formats, excessive copy-pastes, spelling mistakes and security issues in your repository sources with a GitHub Action, other CI tools or locally.

  linterjavacode-qualityjenkinsterraformpythongroovykotlingolangmarkdownlintersformatterbest-practicessecurityautofixapexazure-pipelinesgitlab-cisarif-reportmegalinter
  Language:Dockerfile 1716
• npm-groovy-lint

  nvuillam / npm-groovy-lint

  Lint, format and auto-fix your Groovy / Jenkinsfile / Gradle files using command line

  cicode-quality-analyzercodenarcgradlegroovygroovy-languagehacktoberfestjenkinsfilelintlintermegalinternextflowsarifsarif-report
  Language:JavaScript 181

• JetBrains / qodana-cli

  🔧 JetBrains Qodana’s official command line tool

  javascriptkotlinpythonjavaphptypescriptstatic-code-analysisclicicode-reviewcode-qualitysarifdevsecopscode-scanningqodanasarif-report
  Language:Go 159

• owenrumney / squealer

  Telling tales on you for leaking secrets!

  awscode-scanningdevsecopsgit-toolgogolanghacktoberfestleak-detectionleaking-secretssarif-reportsecretssecuritysecurity-toolsstatic-analysis
  Language:Go 151

• owenrumney / go-sarif

  Go library for sarif - Static Analysis Results Interchange Format

  hacktoberfestreporting-toolssarifsarif-reportsecuritysecurity-toolsstatic-analysistfsec
  Language:Go 57

• crazy-max / ghaction-container-scan

  GitHub Action to check for vulnerabilities in your container image

  dockergithub-actionssarif-reportsecurity-toolstrivyvulnerability-scanners
  Language:TypeScript 56

• Templum / govulncheck-action

  This action uses govulncheck to perform a scan of the code, afterwards it will parse the output and transform it into an Sarif Report, which will be uploaded to Github using the code-scanning API.

  code-scannergithub-actionsgolang-toolssarif-reportsecurity-toolsgogolang
  Language:Go 22

• hauleth / mix_machine

  Machine output for Mix tasks

  sarifsarif-reportelixirelixir-langmixhacktoberfestcodeclimatecode-quality
  Language:Elixir 16

• redhat-actions / crda

  Scan your project's dependencies with Code Ready Dependency Analytics

  security-automationsecuritycrdasarif-reportgithub-actionssecurity-analysis
  Language:TypeScript 15

• georgealton / iam-sarif-report

  Validate your IAM Policies and SCPs with AWS Policy Validator, and convert those results into SARIF documents for reporting.

  awsaws-iamsarifsarif-reportiam-policyiamstatic-analysissastsecurity
  Language:Python 6

• chavacava / garif

  A GO package to create and manipulate SARIF logs

  sarifsarif-reportstatic-analysisgolanggo
  Language:Go 4

• kubeshop / monokle-action

  Run this GitHub action to validate your Kubernetes resources with the Monokle SARIF validator.

  kubernetessarifsarif-reportscannersecurityvalidationdevsecopsgithub-actions
  Language:TypeScript 4

• rm3l / container-scan-to-sarif

  Converts Azure Container Scan Action output to SARIF, for an easier integration with tools like GitHub Code Scanning

  sarifsarif-reportgolangsecuritygocontainer-scanning
  Language:Go 4

• rm3l / container-scan-to-sarif-action

  Action that converts Azure Container Scan Action output to SARIF

  actionscontainer-scanningsarifsarif-reportcode-scanning
  2

• andrenasx / J-TAS

  A GitHub Action that automates the scanning of Java code, identifying the CWEs present in the vulnerable methods.

  cwedeep-learningsarif-reportvulnerability-detectionvulnerability-scanning
  Language:Python 1

• imagecov / imagecov-action

  Imagecov GitHub Action

  scanimage-scanningcve-reportsarif-report
  Language:Dockerfile 0

• UnitTestBot / UTBotJava-action

  An action for unit tests generation and SARIF report creation with the UTBotJava engine

  github-actionjavasarif-reporttest-generation
  0