A physical or virtual address, or a range of addresses, in an ‘addressable region’ (memory or a
binary file).
A single artifact. In some cases, this artifact might be nested within another artifact.
A change to a single artifact.
Represents the contents of an artifact.
Specifies the location of an artifact.
An artifact relevant to a result.
A set of threadFlows which together describe a pattern of code execution relevant to detecting
a result.
Information about how a specific rule or notification was reconfigured at runtime.
Describes how a converter transformed the output of a static analysis tool from the analysis
tool’s native output format into the SARIF format.
Represents a directed edge in a graph.
Represents the traversal of a single edge during a graph traversal.
Describes a runtime exception encountered during the execution of an analysis tool.
The top-level element of an external property file.
Contains information that enables a SARIF consumer to locate the external property file that
contains the value of an externalized property associated with the run.
References to external property files that should be inlined with the content of a root log
file.
A proposed fix for the problem represented by a result object. A fix specifies a set of
artifacts to modify. For each artifact, it specifies a set of bytes to remove, and provides a
set of new bytes to replace them.
A network of nodes and directed edges that describes some aspect of the structure of the code
(for example, a call graph).
Represents a path through a graph.
The runtime environment of the analysis tool run.
A location within a programming artifact.
Information about the relation of one location to another.
A logical location of a construct that produced a result.
Encapsulates a message intended to be read by the end user.
A message string or message format string rendered in multiple formats.
Represents a node in a graph.
Describes a condition relevant to the tool itself, as opposed to being relevant to a target
being analyzed by the tool.
A physical location relevant to a result. Specifies a reference to a programming artifact
together with a range of bytes or characters within that artifact.
Key/value pairs that provide additional information about the object.
An area within an image.
A region within an artifact where a result was detected.
The replacement of a single region of an artifact.
Information about a rule or notification that can be configured at runtime.
Metadata that describes a specific report produced by the tool, as part of the analysis it
provides or its runtime reporting.
Information about how to locate a relevant reporting descriptor.
Information about the relation of one reporting descriptor to another.
A result produced by an analysis tool.
Contains information about how and when a result was detected.
Describes a single run of an analysis tool, and contains the reported output of that run.
Information that describes a run’s identity and role within an engineering system process.
Defines locations of special significance to SARIF consumers.
A call stack that is relevant to a result.
A function call within a stack trace.
A suppression that is relevant to a result.
Describes a sequence of code locations that specify a path through a single thread of execution
such as an operating system or fiber.
A location visited by an analysis tool while simulating or monitoring the execution of a
program.
The analysis tool that was run.
A component, such as a plug-in or the driver, of the analysis tool that was run.
Identifies a particular toolComponent object, either the driver or an extension.
Provides additional metadata related to translation.
Specifies the information necessary to retrieve a desired revision from a version control
system.
Describes an HTTP request.
Describes the response to an HTTP request.