Alternatives and similar repositories for sboms-for-python-packages

Users that are interested in sboms-for-python-packages are comparing it to the libraries listed below

• sigstore / sigstore-python
  A Sigstore client written in Python
  ☆310Updated last week
• sigstore / gh-action-sigstore-python
  A GitHub Action for sigstore-python
  ☆64Updated this week
• psf / fundable-packaging-improvements
  Packaging improvements that could be funded
  ☆57Updated 2 years ago
• sethmlarson / pypi-data
  Data about packages and maintainers on PyPI
  ☆130Updated 4 months ago
• dlint-py / dlint
  Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.
  ☆174Updated 3 weeks ago
• brettcannon / mousebender
  Create reproducible installations for a virtual environment from a lock file
  ☆85Updated 2 months ago
• psf / advisory-database
  This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)
  ☆41Updated this week
• aklajnert / pytest-subprocess
  Pytest plugin to fake subprocess.
  ☆117Updated 2 weeks ago
• davidism / gha-update
  Update GitHub Actions version pins in GitHub workflow files.
  ☆39Updated 6 months ago
• jwodder / pypi-simple
  PyPI Simple Repository API client library
  ☆41Updated 3 weeks ago
• CycloneDX / cyclonedx-python-lib
  Functionality and DataModels of OWASP CycloneDX for Python
  ☆102Updated last week
• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆86Updated 2 months ago
• uranusjr / simpleindex
  ☆55Updated last year
• twu / skjold
  Security audit Python project dependencies against security advisory databases.
  ☆66Updated 5 months ago
• deadsnakes / action
  a GitHub action to install (pre-release) pythons from deadsnakes
  ☆58Updated last month
• Julian / regret
  You made a thing, but now you wish it'd go away... Deprecations, a love story.
  ☆14Updated 2 weeks ago
• sethmlarson / truststore
  Verify certificates using OS trust stores
  ☆217Updated 2 months ago
• simple-repository / simple-repository-server
  A tool for running a PEP-503 simple Python package repository, including features such as dist metadata (PEP-658) and JSON API (PEP-691)
  ☆23Updated 3 months ago
• tox-dev / pyproject-fmt
  ☆203Updated this week
• sarugaku / resolvelib
  Resolve abstract dependencies into concrete ones
  ☆160Updated 3 months ago
• abravalheri / validate-pyproject
  Validation library for simple check on `pyproject.toml`
  ☆200Updated this week
• aboutcode-org / license-expression
  Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …
  ☆72Updated 6 months ago
• hynek / hatch-fancy-pypi-readme
  Fancy PyPI READMEs with Hatch
  ☆184Updated this week
• simple-repository / simple-repository-browser
  A web interface to browse and search packages in any simple package repository (PEP-503), inspired by PyPI / warehouse
  ☆16Updated last month
• capi-workgroup / problems
  Discussions about problems with the current C Api
  ☆20Updated 2 years ago
• jwodder / check-wheel-contents
  Check your wheels have the right contents
  ☆166Updated last month
• ofek / extensionlib
  The toolkit for building extension modules
  ☆27Updated 2 years ago
• tox-dev / sphinx-argparse-cli
  Render CLI arguments (sub-commands friendly) defined by the argparse module.
  ☆25Updated last week
• pradyunsg / vendoring
  A command line tool, to simplify vendoring pure Python dependencies.
  ☆83Updated 2 weeks ago
• sphinx-contrib / sphinx-lint
  Check for stylistic and formal issues in .rst and .py files included in the documentation
  ☆97Updated last month