SpotBugs supports SARIF that supports integration with other SAST tools

This page summarizes the projects mentioned and recommended in the original post on dev.to

InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured
  • Spotbugs

    SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.

  • First, it's better to use SpotBugs 4.4.1 and above, that includes a fix to make SARIF report compatible with Github code scanning API requirements.

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
  • spotbugs-gradle-plugin

  • Refer to spotbugs/spotbugs-gradle-plugin as a living example with GitHub Code scanning integration.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • Looking for a Static Code Analysis tool for Scala Code

    2 projects | /r/cybersecurity | 28 Aug 2021
  • Conducting SAST for Java Applications

    2 projects | /r/java | 15 Apr 2021
  • Google Mesop: Build web apps in Python

    5 projects | news.ycombinator.com | 9 Jun 2024
  • Handling EI_EXPOSE_REP & EI_EXPOSE_REP2 👨🏻‍💻

    1 project | dev.to | 30 Apr 2024
  • A Tale of Two Kitchens - Hypermodernizing Your Python Code Base

    31 projects | dev.to | 12 Nov 2023