Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and other generous sponsors.
☆88Nov 24, 2025Updated 3 months ago
Alternatives and similar repositories for packageurl-python
Users that are interested in packageurl-python are comparing it to the libraries listed below
Sorting:
- Tools to create and deploy a database of software packages metadata, origin, dependencies, and license keyed by PURLs (Package URLs). Sup…☆60Feb 20, 2026Updated last week
- A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby☆978Feb 19, 2026Updated last week
- JavaScript implementation of the package url spec☆28Jan 28, 2026Updated 3 weeks ago
- Parse and compare package versions and ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions…☆42Updated this week
- A library to reliably fetch code via HTTP, FTP and version control systems. This project is sponsored by NLnet project https://nlnet.nl/p…☆11Nov 28, 2025Updated 2 months ago
- Functionality and DataModels of OWASP CycloneDX for Python☆102Jan 26, 2026Updated last month
- A Python library to parse, validate and create SPDX documents.☆238Jan 16, 2026Updated last month
- a mostly correct pip requirements parsing library☆20Sep 2, 2024Updated last year
- A function invocation framework for Python☆11Feb 21, 2024Updated 2 years ago
- A CVRF CSAF Converter, taking care about OASIS specification.☆10Jun 4, 2025Updated 8 months ago
- A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sp…☆647Updated this week
- ScanCode.io is a server to script and automate software composition analysis with pipelines. This project is sponsored by the European Co…☆180Feb 19, 2026Updated last week
- MVP for updated PEP 543 proposal☆14Feb 13, 2026Updated 2 weeks ago
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆72Jul 22, 2025Updated 7 months ago
- NVD API 2.0 client for CVE information☆13May 15, 2025Updated 9 months ago
- A Yocto meta-layer for generating CycloneDX SBOMs☆23Updated this week
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Aug 14, 2020Updated 5 years ago
- Common weakness enumeration library for Python (maintained fork of https://github.com/Julian-Nash/cwe )☆15Aug 29, 2024Updated last year
- SBOM Vulnerability Scanning & Assessment tool☆54Updated this week
- Linux agent used to submit realtime SBOMs and dependency usage information to EdgeBit☆15Jan 24, 2025Updated last year
- Run ScanCode.io pipelines from your Workflows☆12Updated this week
- Emacs major mode for editing Futhark programs☆14May 9, 2025Updated 9 months ago
- The Keep It Simple Software Bill of Material☆11Jan 31, 2022Updated 4 years ago
- ☆15Feb 19, 2026Updated last week
- Tool for creating, modifying and validating CycloneDX SBOMs.☆28Updated this week
- Trace software components, packages and files between Development/Source and Deployment/Distribution/Binaries codebases - strace build an…☆25Aug 29, 2024Updated last year
- Automate open source license compliance and ensure software supply chain integrity☆40Updated this week
- Application which generates SWID-Tags from Linux package managers like dpkg, rpm or pacman.☆16Sep 9, 2021Updated 4 years ago
- The animating and life-affirming code formatter for Xonsh & Python☆10Jun 25, 2019Updated 6 years ago
- Go implementation of the package url spec☆72Feb 20, 2026Updated last week
- .NET implementation of the package url spec☆16Updated this week
- Sans-io implementation of the (E)SMTP protocol☆18Jan 5, 2026Updated last month
- utilities for filesystem exploration and automated builds☆21Jan 24, 2026Updated last month
- CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools☆16Updated this week
- ☆19Nov 14, 2024Updated last year
- FOSSLight Dependency Scanner☆36Feb 13, 2026Updated 2 weeks ago
- Rust implementation of the Package URL specification.☆15Dec 11, 2025Updated 2 months ago
- Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.☆81Feb 20, 2026Updated last week
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…☆136Updated this week