Alternatives and similar repositories for advisory-database

Users that are interested in advisory-database are comparing it to the libraries listed below

• pypa / pip-audit
  Audits Python environments, requirements files and dependency trees for known security vulnerabilities, and can automatically fix them
  ☆1,194Updated last week
• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆86Updated 2 months ago
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆230Updated this week
• tonybaloney / pycharm-security
  Finds security holes in your Python projects from PyCharm and GitHub
  ☆348Updated 5 months ago
• CycloneDX / cyclonedx-python
  CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
  ☆357Updated this week
• RedHatProductSecurity / cvss
  CVSS2/3/4 library with interactive calculator for Python 2 and Python 3
  ☆117Updated 6 months ago
• CycloneDX / cyclonedx-python-lib
  Functionality and DataModels of OWASP CycloneDX for Python
  ☆102Updated 2 weeks ago
• spdx / tools-python
  A Python library to parse, validate and create SPDX documents.
  ☆233Updated 3 weeks ago
• psf / advisory-database
  This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)
  ☆41Updated last week
• sonatype-nexus-community / jake
  Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
  ☆132Updated 2 weeks ago
• sigstore / sigstore-python
  A Sigstore client written in Python
  ☆310Updated this week
• aboutcode-org / univers
  Parse and compare package versions and ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions…
  ☆39Updated last week
• CloudSecurityAlliance / gsd-database
  Global Security Database
  ☆318Updated last year
• dlint-py / dlint
  Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.
  ☆174Updated last month
• vstinner / python-security
  Documentation of Python security
  ☆92Updated 6 months ago
• twu / skjold
  Security audit Python project dependencies against security advisory databases.
  ☆66Updated 5 months ago
• pypa / gh-action-pip-audit
  A GitHub Action for pip-audit
  ☆84Updated last week
• sethmlarson / pypi-data
  Data about packages and maintainers on PyPI
  ☆130Updated 4 months ago
• psf / sboms-for-python-packages
  Software Bill-of-Materials documents for Python packages
  ☆45Updated 11 months ago
• DataDog / guarddog
  GuardDog is a CLI tool to Identify malicious PyPI and npm packages
  ☆966Updated this week
• aboutcode-org / license-expression
  Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …
  ☆72Updated 6 months ago
• trailofbits / it-depends
  A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositorie…
  ☆381Updated last week
• microsoft / sarif-python-om
  Python classes for the SARIF object model
  ☆45Updated last year
• avilum / secimport
  Library-Level eBPF Sandbox for Python (Linux & macOS): syscall-level control per module.
  ☆234Updated last month
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆110Updated this week
• facebook / sapp
  Post Processor for Facebook Static Analysis Tools.
  ☆141Updated this week
• ossf / malicious-packages
  A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…
  ☆449Updated this week
• nilp0inter / cpe
  CPE: Common Platform Enumeration for Python
  ☆97Updated 4 months ago
• OWASP / www-project-benchmark
  OWASP Foundation Web Respository
  ☆19Updated last month
• hugovk / top-pypi-packages
  A regular dump of the most-downloaded packages from PyPI
  ☆251Updated last week