Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and other generous sponsors.
☆88Mar 11, 2026Updated 2 months ago
Alternatives and similar repositories for packageurl-python
Users that are interested in packageurl-python are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Tools to create and deploy a database of software packages metadata, origin, dependencies, and license keyed by PURLs (Package URLs). Sup…☆65Updated this week
- A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby☆1,049Updated this week
- Parse and compare package versions and ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions…☆47May 1, 2026Updated last month
- A library to reliably fetch code via HTTP, FTP and version control systems. This project is sponsored by NLnet project https://nlnet.nl/p…☆12Mar 18, 2026Updated 2 months ago
- A mostly universal file extraction library and CLI tool to extract almost any archive in a reasonably safe way on Linux, macOS and Window…☆38May 18, 2026Updated 3 weeks ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A Python library to parse, validate and create SPDX documents.☆250Mar 13, 2026Updated 2 months ago
- Functionality and DataModels of OWASP CycloneDX for Python☆109Updated this week
- Inspect Python code and PyPI package manifests. Resolve Python dependencies.☆24May 18, 2026Updated 3 weeks ago
- Linux agent used to submit realtime SBOMs and dependency usage information to EdgeBit☆15Jan 24, 2025Updated last year
- ScanCode.io is a server to script and automate software composition analysis with pipelines. This project is sponsored by the European Co…☆204May 25, 2026Updated 2 weeks ago
- PURL to CPE Relationship mapping project.☆118Updated this week
- a mostly correct pip requirements parsing library☆20Sep 2, 2024Updated last year
- A pure python rpm reader☆20Apr 11, 2024Updated 2 years ago
- Python implementation of Stakeholder-Specific Vulnerability Categorization (SSVC)☆22Apr 17, 2026Updated last month
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Run ScanCode.io pipelines from your Workflows☆13Apr 2, 2026Updated 2 months ago
- Java/JVM implementation of the package url spec☆46Nov 21, 2025Updated 6 months ago
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆73May 26, 2026Updated 2 weeks ago
- Trace software components, packages and files between Development/Source and Deployment/Distribution/Binaries codebases - strace build an…☆25Aug 29, 2024Updated last year
- MVP for updated PEP 543 proposal☆14May 26, 2026Updated 2 weeks ago
- Automate open source license compliance and ensure software supply chain integrity☆47Jun 1, 2026Updated last week
- Go implementation of the package url spec☆73May 28, 2026Updated last week
- FOSSLight Dependency Scanner☆37Jun 1, 2026Updated last week
- ☆18Updated this week
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Aug 14, 2020Updated 5 years ago
- .NET library to consume and produce CycloneDX Software Bill of Materials (SBOM)☆28Apr 26, 2026Updated last month
- NVD API 2.0 client for CVE information☆14May 15, 2025Updated last year
- A free and open database of all the licenses, in particular all the open source software licenses☆65May 26, 2026Updated last week
- The System Package Data Exchange (SPDX) specification in Markdown and HTML formats.☆371Updated this week
- Examples of SPDX files for software combinations☆149Updated this week
- MoreFixes: A Large-Scale Dataset of CVE Fix Commits Mined through Enhanced Repository Discovery☆72Jun 1, 2026Updated last week
- A changelog finder and parser for packages available on pypi, npm and rubygems.☆70Apr 10, 2025Updated last year
- A python library to parse Debian deb822-style control and copyright files and all related Debian, Ubuntu and Debian-derivative manifest a…☆16Oct 2, 2025Updated 8 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- The Keep It Simple Software Bill of Material☆11Jan 31, 2022Updated 4 years ago
- ☆50Updated this week
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆114Feb 28, 2026Updated 3 months ago
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…☆142May 25, 2026Updated 2 weeks ago
- A place to systematically store software bill of materials (SBOM) documents.☆51Jun 1, 2023Updated 3 years ago
- Library to ingest and generate SBOMs☆44May 21, 2026Updated 2 weeks ago
- Application which generates SWID-Tags from Linux package managers like dpkg, rpm or pacman.☆16Sep 9, 2021Updated 4 years ago