Alternatives and similar repositories for advisory-database:

Users that are interested in advisory-database are comparing it to the libraries listed below

• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆74Updated last week
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆198Updated last week
• pypa / pip-audit
  Audits Python environments, requirements files and dependency trees for known security vulnerabilities, and can automatically fix them
  ☆1,036Updated last week
• CycloneDX / cyclonedx-python-lib
  Python implementation of OWASP CycloneDX
  ☆80Updated 2 weeks ago
• RedHatProductSecurity / cvss
  CVSS2/3/4 library with interactive calculator for Python 2 and Python 3
  ☆95Updated 2 weeks ago
• spdx / tools-python
  A Python library to parse, validate and create SPDX documents.
  ☆208Updated 6 months ago
• CycloneDX / cyclonedx-python
  CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
  ☆276Updated this week
• sigstore / sigstore-python
  A Sigstore client written in Python
  ☆258Updated last week
• sethmlarson / pypi-data
  Data about packages and maintainers on PyPI
  ☆126Updated last month
• tonybaloney / pycharm-security
  Finds security holes in your Python projects from PyCharm and GitHub
  ☆339Updated 9 months ago
• ossf / malicious-packages
  A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…
  ☆300Updated last week
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…
  ☆114Updated last month
• sonatype-nexus-community / jake
  Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
  ☆119Updated 5 months ago
• vstinner / python-security
  Documentation of Python security
  ☆89Updated last year
• CloudSecurityAlliance / gsd-database
  Global Security Database
  ☆314Updated 11 months ago
• pypa / gh-action-pip-audit
  A GitHub Action for pip-audit
  ☆73Updated 3 months ago
• dlint-py / dlint
  Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.
  ☆165Updated 5 months ago
• DataDog / guarddog
  GuardDog is a CLI tool to Identify malicious PyPI and npm packages
  ☆707Updated last week
• psf / advisory-database
  This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)
  ☆35Updated last month
• twu / skjold
  Security audit Python project dependencies against security advisory databases.
  ☆67Updated 6 months ago
• google / oss-fuzz-vulns
  OSS-Fuzz vulnerabilities for OSV.
  ☆150Updated this week
• facebook / sapp
  Post Processor for Facebook Static Analysis Tools.
  ☆139Updated last week
• DataDog / malicious-software-packages-dataset
  An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.
  ☆193Updated last week
• rsc-dev / pypi_malware
  PyPI malware packages
  ☆58Updated 6 years ago
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆65Updated last month
• CycloneDX / specification
  OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
  ☆393Updated this week
• pypi / inspector
  🕵️ File browser for distributions on PyPI
  ☆103Updated 2 weeks ago
• google / clusterfuzzlite
  ClusterFuzzLite - Simple continuous fuzzing that runs in CI.
  ☆476Updated 4 months ago
• pyupio / dparse
  A parser for Python dependency files
  ☆65Updated 4 months ago
• trailofbits / it-depends
  A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositorie…
  ☆355Updated 4 months ago