Alternatives and similar repositories for sboms-for-python-packages

Users that are interested in sboms-for-python-packages are comparing it to the libraries listed below

• psf / advisory-database
  This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)
  ☆35Updated last week
• sigstore / gh-action-sigstore-python
  A GitHub Action for sigstore-python
  ☆52Updated this week
• psf / fundable-packaging-improvements
  Packaging improvements that could be funded
  ☆54Updated 2 years ago
• sigstore / sigstore-python
  A Sigstore client written in Python
  ☆273Updated this week
• sethmlarson / pypi-data
  Data about packages and maintainers on PyPI
  ☆128Updated 2 months ago
• CycloneDX / cyclonedx-python-lib
  Python implementation of OWASP CycloneDX
  ☆83Updated this week
• pypa / gh-action-pip-audit
  A GitHub Action for pip-audit
  ☆74Updated last week
• davidism / gha-update
  Update GitHub Actions version pins in GitHub workflow files.
  ☆30Updated last week
• sphinx-contrib / sphinx-lint
  Check for stylistic and formal issues in .rst and .py files included in the documentation
  ☆89Updated 3 weeks ago
• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆74Updated 2 weeks ago
• dlint-py / dlint
  Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.
  ☆166Updated 7 months ago
• pyupio / dparse
  A parser for Python dependency files
  ☆65Updated 7 months ago
• sonatype-nexus-community / jake
  Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
  ☆120Updated 2 weeks ago
• simple-repository / simple-repository-server
  A tool for running a PEP-503 simple Python package repository, including features such as dist metadata (PEP-658) and JSON API (PEP-691)
  ☆22Updated 3 months ago
• tox-dev / sphinx-argparse-cli
  Render CLI arguments (sub-commands friendly) defined by the argparse module.
  ☆24Updated 2 weeks ago
• aklajnert / pytest-subprocess
  Pytest plugin to fake subprocess.
  ☆112Updated last month
• aboutcode-org / license-expression
  Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …
  ☆67Updated 2 months ago
• anthonyharrison / sbom4python
  A tool to generate a SBOM (Software Bill of Materials) for an installed Python module
  ☆33Updated 3 months ago
• simple-repository / simple-repository-browser
  A web interface to browse and search packages in any simple package repository (PEP-503), inspired by PyPI / warehouse
  ☆13Updated last week
• brettcannon / pip-secure-install
  Action to have pip install from a requirements file as securely as possible
  ☆41Updated 3 years ago
• tox-dev / pyproject-fmt
  ☆184Updated last week
• ofek / extensionlib
  The toolkit for building extension modules
  ☆25Updated 2 years ago
• uranusjr / simpleindex
  ☆49Updated last year
• brettcannon / mousebender
  Create reproducible installations for a virtual environment from a lock file
  ☆86Updated 3 months ago
• wheelodex / wheel-inspect
  Extract information from wheels
  ☆24Updated 5 months ago
• deadsnakes / action
  a GitHub action to install (pre-release) pythons from deadsnakes
  ☆55Updated this week
• sphinx-doc / sphinx-argparse
  A Sphinx extension to automatically document argparse commands and options
  ☆33Updated 10 months ago
• ossf / sbom-everywhere
  Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
  ☆93Updated last week
• abravalheri / validate-pyproject
  Validation library for simple check on `pyproject.toml`
  ☆163Updated 2 weeks ago
• ewjoachim / pypitoken
  Creation & manipulation of PyPI tokens
  ☆12Updated this week