Skip to content

Support for the SARIF (Static Analysis Results Interchange Format) #646

New issue
New issue
Closed
#1113
Closed
Support for the SARIF (Static Analysis Results Interchange Format)#646
#1113

Description

@abhaybhargav

abhaybhargav
openedon Nov 20, 2020

Is your feature request related to a problem? Please describe.
I think integration is the name of the game today and the SARIF format (https://github.com/oasis-tcs/sarif-spec) is a standard that most static analysis tools have embraced. It would be great if Bandit could have that as well. Simply because this integrates with Github, Vulnerability Management Tools and makes results consistent

Describe the solution you'd like
Support for the sarif-spec based on the JSON spec listed here and --output and --format flags that support SARIF as an option in addition to JSON, XML, etc.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or request

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions