Alternatives and similar repositories for sboms-for-python-packages

Users that are interested in sboms-for-python-packages are comparing it to the libraries listed below

• sigstore / gh-action-sigstore-python
  A GitHub Action for sigstore-python
  ☆53Updated 2 weeks ago
• sigstore / sigstore-python
  A Sigstore client written in Python
  ☆276Updated last week
• psf / fundable-packaging-improvements
  Packaging improvements that could be funded
  ☆54Updated 2 years ago
• brettcannon / mousebender
  Create reproducible installations for a virtual environment from a lock file
  ☆85Updated 4 months ago
• sethmlarson / pypi-data
  Data about packages and maintainers on PyPI
  ☆128Updated 2 months ago
• sphinx-contrib / sphinx-lint
  Check for stylistic and formal issues in .rst and .py files included in the documentation
  ☆88Updated 2 weeks ago
• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆75Updated 3 weeks ago
• psf / advisory-database
  This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)
  ☆35Updated last week
• adamtheturtle / sphinx-substitution-extensions
  Extensions for Sphinx which allow substitutions
  ☆40Updated this week
• dlint-py / dlint
  Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.
  ☆167Updated 8 months ago
• CycloneDX / cyclonedx-python-lib
  Python implementation of OWASP CycloneDX
  ☆84Updated this week
• pyupio / dparse
  A parser for Python dependency files
  ☆65Updated 7 months ago
• uranusjr / simpleindex
  ☆49Updated last year
• deadsnakes / action
  a GitHub action to install (pre-release) pythons from deadsnakes
  ☆56Updated 3 weeks ago
• sarugaku / resolvelib
  Resolve abstract dependencies into concrete ones
  ☆156Updated 3 weeks ago
• abravalheri / validate-pyproject
  Validation library for simple check on `pyproject.toml`
  ☆163Updated last week
• aklajnert / pytest-subprocess
  Pytest plugin to fake subprocess.
  ☆112Updated last month
• hynek / hatch-fancy-pypi-readme
  Fancy PyPI READMEs with Hatch
  ☆176Updated last week
• hynek / build-and-inspect-python-package
  Build and Inspect Python Packages in GitHub Actions
  ☆198Updated 2 weeks ago
• tox-dev / sphinx-argparse-cli
  Render CLI arguments (sub-commands friendly) defined by the argparse module.
  ☆24Updated last week
• spdx / tools-python
  A Python library to parse, validate and create SPDX documents.
  ☆219Updated last week
• owenlamont / uv-secure
  Scan your uv.lock file for dependencies with known vulnerabilities
  ☆74Updated last week
• simple-repository / simple-repository-server
  A tool for running a PEP-503 simple Python package repository, including features such as dist metadata (PEP-658) and JSON API (PEP-691)
  ☆22Updated 3 months ago
• pypa / gh-action-pip-audit
  A GitHub Action for pip-audit
  ☆75Updated 2 weeks ago
• sethmlarson / truststore
  Verify certificates using OS trust stores
  ☆188Updated this week
• ofek / extensionlib
  The toolkit for building extension modules
  ☆25Updated 2 years ago
• davidism / gha-update
  Update GitHub Actions version pins in GitHub workflow files.
  ☆31Updated this week
• pypa / abi3audit
  Scans Python packages for abi3 violations and inconsistencies
  ☆111Updated last week
• hugovk / norwegianblue
  CLI to show end-of-life dates for a number of products.
  ☆129Updated last week
• sloria / sphinx-issues
  A Sphinx extension for linking to your project's issue tracker
  ☆55Updated last week