-
Type:
Task
-
Status: Closed
-
Priority:
Major
-
Resolution: Fixed
-
Component/s: Ballot request, OS Submission Ballot
-
Labels:None
-
Environment:
SARIF
Submitted on Tuesday, December 10, 2019 - 03:19
Submitted by user:
Submitted values are:
Your name: David Keaton
TC name: SARIF
TC email address: sarif@lists.oasis-open.org
Title: Static Analysis Results Interchange Format (SARIF) Version 2.1.0
Committee Specification URI:
https://docs.oasis-open.org/sarif/sarif/v2.1.0/cs01/
Committee Specification editable source URI(s):
https://docs.oasis-open.org/sarif/sarif/v2.1.0/cs01/sarif-v2.1.0-cs01.docx
Certification by the TC that all schema and XML instances are well-formed and
that expressions are valid: We so certify
Clear English-language summary of the specification: Static Analysis Results
Interchange Format (SARIF) is a standard output format for static analysis
tools. A static analysis tool is a program that examines programming
artifacts
in order to detect problems, without executing the program. A standard
output
format allows results to be combined across runs of the same tool, and across
runs of tools from multiple vendors, to get a more complete picture of the
aspects of a program that need improvement.
Relationship of this specification to similar work: The Object Management
Group's Tool Output Integration Format (TOIF) is an existing standard that
integrates diverse static analysis result formats into the lowest common
denominator representation, as one form of evidence in a software assurance
system. By contrast, SARIF accommodates deep, precise expression of static
analysis results to provide full support for the capabilities of advanced
static
analysis systems, enabling the sharing of sophisticated visualization and
processing components that previously were specific to individual static
analysis tools.
-Statements of Use-
Link to Statement of Use #1:
https://www.oasis-open.org/committees/document.php?document_id=65816&wg_abbrev=sarif
Link to Statement of Use #2:
https://www.oasis-open.org/committees/document.php?document_id=66130&wg_abbrev=sarif
Link to Statement of Use #3:
https://www.oasis-open.org/committees/document.php?document_id=66346&wg_abbrev=sarif
Additional Statements of Use:
-Public Reviews-
First public review announcement URI:
https://lists.oasis-open.org/archives/tc-announce/201906/msg00002.html
Comment resolution log:
https://www.oasis-open.org/apps/org/workgroup/sarif/email/archives/201907/msg00013.html
Additional public review announcement URIs:
Additional comment resolution log URIs: http://
Approval link:
https://www.oasis-open.org/apps/org/workgroup/sarif/ballot.php?id=3453
Earlier attempts to standardize: No
Sources of explanatory information:
Notes:
The results of this submission may be viewed at:
http://tools.oasis-open.org/issues/browse/TCADMIN