SWAMP Contributes to Standard Results Format
The SWAMP is now a participating member of the OASIS Static Analysis Results Interchange Format (SARIF) Technical Committee! The first meeting was held on Wednesday, September 6, 2017. With the help of the SWAMP, the committee will define a standard output format for static analysis tools, otherwise known as SARIF. A standard output would make it “feasible for developers and teams to view, understand, interact with, and manage the results produced by all the tools that they use.” SARIF will support the aggregation of results from a variety of static analysis tools, similar to the way that the SWAMP uses SCARF (SWAMP Common Assessment Result Format) with results viewers today, which allows developers to form an overall picture of program quality and quickly detect problems. This collaboration is another step towards lowering the barriers for software assurance and secure coding. Learn more about SARIF by visiting https://www.oasis-open.org/committees/tc_home.php?wg_abbrev=sarif.