aboutcode-org / cwe2Links
Common weakness enumeration library for Python (maintained fork of https://github.com/Julian-Nash/cwe )
☆15Updated last year
Alternatives and similar repositories for cwe2
Users that are interested in cwe2 are comparing it to the libraries listed below
Sorting:
- Tools to create and deploy a database of software packages metadata, origin, dependencies, and license keyed by PURLs (Package URLs). Sup…☆58Updated last week
- Parse and compare package versions and ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions…☆38Updated last week
- ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored…☆172Updated 2 weeks ago
- Manage legacy code with comments.☆17Updated this week
- Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.☆132Updated 2 weeks ago
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆86Updated 2 months ago
- Security audit Python project dependencies against security advisory databases.☆66Updated 5 months ago
- Functionality and DataModels of OWASP CycloneDX for Python☆102Updated last week
- A set of utilities and tools to detect and search AI-generated code☆25Updated 8 months ago
- Advisory database for Python packages published on pypi.org☆317Updated 2 weeks ago
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆300Updated last week
- Automatically updated pypi API data, available in bulk via git or sqlite☆79Updated this week
- A parser for Python dependency files☆65Updated last year
- A fork of Bandit tool with patterns to identifying malicious python code.☆28Updated 3 years ago
- A GitHub Action for pip-audit☆84Updated this week
- ☆16Updated 4 months ago
- CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments☆356Updated last week
- List of Sphinx extensions and themes☆19Updated 2 years ago
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆72Updated 6 months ago
- CVSS2/3/4 library with interactive calculator for Python 2 and Python 3☆116Updated 6 months ago
- A tool to generate a SBOM (Software Bill of Materials) for an installed Python module☆37Updated 3 weeks ago
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆79Updated 2 weeks ago
- A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sp…☆645Updated this week
- Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.☆174Updated 3 weeks ago
- Audit python packages for known vulnerabilities☆34Updated 3 years ago
- This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)☆41Updated this week
- 🌈 Drop-in replacement for Click to make user-friendly and colorful CLI☆107Updated this week
- Update GitHub Actions version pins in GitHub workflow files.☆39Updated 6 months ago
- A pre-commit hook to check your Python dependencies against safety-db☆101Updated 2 months ago
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…☆135Updated 2 weeks ago