Save Our Tool!

All-purpose command-line test framework for evaluating and certifying static analyzers, compilers, and other code-related tools. Enables automated test detection, comparison of expected vs. actual warnings, and supports multiple plugins for diverse testing scenarios.

Offers a cloud-based CI platform for testing and benchmarking code analyzers, including services for sharing tests, creating online demos, and participating in code analysis contests. Also features a platform for reporting and deduplicating vulnerabilities.

Enhances file handling by extending an existing I/O library, enabling path conversions between file system paths and URIs, supporting UNC paths and IPv6 addresses.

Utilities facilitate working with SARIF files by parsing fix object sections, creating copies of target files, and automatically applying proposed fixes to these copies.

Facilitates serialization and deserialization of OSV Schema for vulnerability data. Supports multiplatform, KotlinX Serialization, and Jackson annotations, with extension points for database-specific fields.

Facilitates serialization and deserialization of COSV schema extensions for OSV, inspired by detekt/sarif4k. Supports multiplatform, KotlinX Serialization, and Jackson annotations for JVM.