Alternatives and similar repositories for sboms-for-python-packages

Users that are interested in sboms-for-python-packages are comparing it to the libraries listed below

• sigstore / gh-action-sigstore-python
  A GitHub Action for sigstore-python
  ☆58Updated last week
• sigstore / sigstore-python
  A Sigstore client written in Python
  ☆287Updated this week
• psf / fundable-packaging-improvements
  Packaging improvements that could be funded
  ☆55Updated 2 years ago
• sethmlarson / pypi-data
  Data about packages and maintainers on PyPI
  ☆129Updated 4 months ago
• brettcannon / mousebender
  Create reproducible installations for a virtual environment from a lock file
  ☆85Updated last week
• dlint-py / dlint
  Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.
  ☆169Updated 10 months ago
• psf / advisory-database
  This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)
  ☆36Updated 2 weeks ago
• anthonyharrison / sbom4python
  A tool to generate a SBOM (Software Bill of Materials) for an installed Python module
  ☆33Updated 2 months ago
• uranusjr / simpleindex
  ☆51Updated last year
• simple-repository / simple-repository-server
  A tool for running a PEP-503 simple Python package repository, including features such as dist metadata (PEP-658) and JSON API (PEP-691)
  ☆22Updated 5 months ago
• tox-dev / pyproject-fmt
  ☆191Updated last week
• aklajnert / pytest-subprocess
  Pytest plugin to fake subprocess.
  ☆113Updated 3 months ago
• sphinx-contrib / sphinx-lint
  Check for stylistic and formal issues in .rst and .py files included in the documentation
  ☆90Updated this week
• pyupio / dparse
  A parser for Python dependency files
  ☆65Updated 9 months ago
• CycloneDX / cyclonedx-python-lib
  Python implementation of OWASP CycloneDX
  ☆85Updated last week
• sarugaku / resolvelib
  Resolve abstract dependencies into concrete ones
  ☆157Updated 2 months ago
• owenlamont / uv-secure
  Scan your uv.lock file for dependencies with known vulnerabilities
  ☆80Updated last week
• deadsnakes / action
  a GitHub action to install (pre-release) pythons from deadsnakes
  ☆57Updated 2 weeks ago
• abravalheri / validate-pyproject
  Validation library for simple check on `pyproject.toml`
  ☆169Updated this week
• rvben / rumdl
  A Markdown Linter written in Rust
  ☆114Updated this week
• jwodder / check-wheel-contents
  Check your wheels have the right contents
  ☆167Updated last week
• adamtheturtle / sphinx-substitution-extensions
  Extensions for Sphinx which allow substitutions
  ☆41Updated this week
• tox-dev / sphinx-argparse-cli
  Render CLI arguments (sub-commands friendly) defined by the argparse module.
  ☆24Updated this week
• davidism / gha-update
  Update GitHub Actions version pins in GitHub workflow files.
  ☆34Updated last month
• simple-repository / simple-repository-browser
  A web interface to browse and search packages in any simple package repository (PEP-503), inspired by PyPI / warehouse
  ☆15Updated last month
• ofek / extensionlib
  The toolkit for building extension modules
  ☆25Updated 2 years ago
• hynek / build-and-inspect-python-package
  Build and Inspect Python Packages in GitHub Actions
  ☆201Updated 3 weeks ago
• brettcannon / pip-secure-install
  Action to have pip install from a requirements file as securely as possible
  ☆41Updated 3 years ago
• sonatype-nexus-community / jake
  Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
  ☆124Updated 2 months ago
• wheelodex / wheel-inspect
  Extract information from wheels
  ☆24Updated last week