Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and other generous sponsors.
☆89Mar 11, 2026Updated 3 weeks ago
Alternatives and similar repositories for packageurl-python
Users that are interested in packageurl-python are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Tools to create and deploy a database of software packages metadata, origin, dependencies, and license keyed by PURLs (Package URLs). Sup…☆63Mar 31, 2026Updated last week
- A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby☆1,006Mar 26, 2026Updated 2 weeks ago
- JavaScript implementation of the package url spec☆28Jan 28, 2026Updated 2 months ago
- Parse and compare package versions and ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions…☆45Feb 25, 2026Updated last month
- A library to reliably fetch code via HTTP, FTP and version control systems. This project is sponsored by NLnet project https://nlnet.nl/p…☆12Mar 18, 2026Updated 3 weeks ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A mostly universal file extraction library and CLI tool to extract almost any archive in a reasonably safe way on Linux, macOS and Window…☆38Oct 31, 2025Updated 5 months ago
- A Python library to parse, validate and create SPDX documents.☆243Mar 13, 2026Updated 3 weeks ago
- Functionality and DataModels of OWASP CycloneDX for Python☆105Mar 28, 2026Updated last week
- Inspect Python code and PyPI package manifests. Resolve Python dependencies.☆24Mar 11, 2026Updated 3 weeks ago
- ScanCode.io is a server to script and automate software composition analysis with pipelines. This project is sponsored by the European Co…☆195Updated this week
- PURL to CPE Relationship mapping project.☆113Updated this week
- SBOM Vulnerability Scanning & Assessment tool☆59Mar 31, 2026Updated last week
- Common weakness enumeration library for Python (maintained fork of https://github.com/Julian-Nash/cwe )☆15Aug 29, 2024Updated last year
- a mostly correct pip requirements parsing library☆20Sep 2, 2024Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sp…☆658Updated this week
- Run ScanCode.io pipelines from your Workflows☆12Apr 2, 2026Updated last week
- A pure python rpm reader☆20Apr 11, 2024Updated last year
- Python implementation of Stakeholder-Specific Vulnerability Categorization (SSVC)☆23Mar 27, 2026Updated last week
- Java/JVM implementation of the package url spec☆46Nov 21, 2025Updated 4 months ago
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆73Mar 17, 2026Updated 3 weeks ago
- Trace software components, packages and files between Development/Source and Deployment/Distribution/Binaries codebases - strace build an…☆25Aug 29, 2024Updated last year
- MVP for updated PEP 543 proposal☆14Mar 26, 2026Updated 2 weeks ago
- Automate open source license compliance and ensure software supply chain integrity☆43Apr 2, 2026Updated last week
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.☆85Mar 30, 2026Updated last week
- A Yocto meta-layer for generating CycloneDX SBOMs☆25Mar 29, 2026Updated last week
- Go implementation of the package url spec☆73Mar 7, 2026Updated last month
- FOSSLight Dependency Scanner☆36Apr 1, 2026Updated last week
- A function invocation framework for Python☆11Feb 21, 2024Updated 2 years ago
- ☆11Dec 15, 2023Updated 2 years ago
- ☆17Mar 30, 2026Updated last week
- .NET library to consume and produce CycloneDX Software Bill of Materials (SBOM)☆26Mar 17, 2026Updated 3 weeks ago
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Aug 14, 2020Updated 5 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Tool for creating, modifying and validating CycloneDX SBOMs.☆29Updated this week
- NVD API 2.0 client for CVE information☆13May 15, 2025Updated 10 months ago
- CPE: Common Platform Enumeration for Python☆96Sep 23, 2025Updated 6 months ago
- The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.☆362Updated this week
- Examples of SPDX files for software combinations☆145Mar 31, 2026Updated last week
- OWASP Embedded Application Security Project☆18Jan 17, 2022Updated 4 years ago
- Lightweight SBOM CVE analysis tool☆31Apr 1, 2026Updated last week