psf / sboms-for-python-packagesLinks
Software Bill-of-Materials documents for Python packages
☆42Updated 6 months ago
Alternatives and similar repositories for sboms-for-python-packages
Users that are interested in sboms-for-python-packages are comparing it to the libraries listed below
Sorting:
- A GitHub Action for sigstore-python☆59Updated this week
- A Sigstore client written in Python☆291Updated this week
- Data about packages and maintainers on PyPI☆130Updated 4 months ago
- ☆53Updated last year
- Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.☆169Updated 10 months ago
- Packaging improvements that could be funded☆55Updated 2 years ago
- Extensions for Sphinx which allow substitutions☆41Updated this week
- Resolve abstract dependencies into concrete ones☆157Updated 2 months ago
- Create reproducible installations for a virtual environment from a lock file☆85Updated 2 weeks ago
- This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)☆36Updated 2 weeks ago
- A tool for running a PEP-503 simple Python package repository, including features such as dist metadata (PEP-658) and JSON API (PEP-691)☆22Updated this week
- Pytest plugin to fake subprocess.☆114Updated last week
- Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.☆126Updated 3 months ago
- A tool to generate a SBOM (Software Bill of Materials) for an installed Python module☆33Updated 2 months ago
- Python implementation of OWASP CycloneDX☆86Updated this week
- Check for stylistic and formal issues in .rst and .py files included in the documentation☆90Updated this week
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆69Updated last month
- a mostly correct pip requirements parsing library☆21Updated last year
- A web interface to browse and search packages in any simple package repository (PEP-503), inspired by PyPI / warehouse☆15Updated this week
- Special Jinja2 extension for Copier that allows to load extensions using file paths relative to the template root instead of Python dotte…☆26Updated 2 months ago
- A parser for Python dependency files☆66Updated 9 months ago
- Add inline tabbed content to your Sphinx documentation. (maintained, though extremely stable as of Jan 2022)☆87Updated last week
- a GitHub action to install (pre-release) pythons from deadsnakes☆57Updated this week
- Scans Python packages for abi3 violations and inconsistencies☆112Updated this week
- A command line tool, to simplify vendoring pure Python dependencies.☆81Updated this week
- Build and Inspect Python Packages in GitHub Actions☆201Updated 2 weeks ago
- A Markdown Linter written in Rust☆128Updated this week
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆79Updated 2 weeks ago
- PyPI Simple Repository API client library☆40Updated last week
- Validation library for simple check on `pyproject.toml`☆172Updated this week