Takes SARIF scan results and weAudit annotations, matches them to your code graph by file and line, groups by severity, and links findings back to pre-scan data for context.
Best for: Engineers reviewing static analysis results in the context of actual code structure and history.
Creator's repository · trailofbits/skills
License: CC-BY-SA-4.0