psf / sboms-for-python-packagesLinks
Software Bill-of-Materials documents for Python packages
☆41Updated 4 months ago
Alternatives and similar repositories for sboms-for-python-packages
Users that are interested in sboms-for-python-packages are comparing it to the libraries listed below
Sorting:
- This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)☆35Updated last week
- A GitHub Action for sigstore-python☆52Updated this week
- Packaging improvements that could be funded☆54Updated 2 years ago
- A Sigstore client written in Python☆273Updated this week
- Data about packages and maintainers on PyPI☆128Updated 2 months ago
- Python implementation of OWASP CycloneDX☆83Updated this week
- A GitHub Action for pip-audit☆74Updated last week
- Update GitHub Actions version pins in GitHub workflow files.☆30Updated last week
- Check for stylistic and formal issues in .rst and .py files included in the documentation☆89Updated 3 weeks ago
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆74Updated 2 weeks ago
- Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.☆166Updated 7 months ago
- A parser for Python dependency files☆65Updated 7 months ago
- Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.☆120Updated 2 weeks ago
- A tool for running a PEP-503 simple Python package repository, including features such as dist metadata (PEP-658) and JSON API (PEP-691)☆22Updated 3 months ago
- Render CLI arguments (sub-commands friendly) defined by the argparse module.☆24Updated 2 weeks ago
- Pytest plugin to fake subprocess.☆112Updated last month
- Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …☆67Updated 2 months ago
- A tool to generate a SBOM (Software Bill of Materials) for an installed Python module☆33Updated 3 months ago
- A web interface to browse and search packages in any simple package repository (PEP-503), inspired by PyPI / warehouse☆13Updated last week
- Action to have pip install from a requirements file as securely as possible☆41Updated 3 years ago
- ☆184Updated last week
- The toolkit for building extension modules☆25Updated 2 years ago
- ☆49Updated last year
- Create reproducible installations for a virtual environment from a lock file☆86Updated 3 months ago
- Extract information from wheels☆24Updated 5 months ago
- a GitHub action to install (pre-release) pythons from deadsnakes☆55Updated this week
- A Sphinx extension to automatically document argparse commands and options☆33Updated 10 months ago
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆93Updated last week
- Validation library for simple check on `pyproject.toml`☆163Updated 2 weeks ago
- Creation & manipulation of PyPI tokens☆12Updated this week