Alternatives and similar repositories for advisory-database

Users that are interested in advisory-database are comparing it to the libraries listed below

• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆217Updated this week
• pypa / pip-audit
  Audits Python environments, requirements files and dependency trees for known security vulnerabilities, and can automatically fix them
  ☆1,146Updated last week
• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆80Updated 2 weeks ago
• RedHatProductSecurity / cvss
  CVSS2/3/4 library with interactive calculator for Python 2 and Python 3
  ☆112Updated 4 months ago
• CycloneDX / cyclonedx-python-lib
  Functionality and DataModels of OWASP CycloneDX for Python
  ☆96Updated last week
• sigstore / sigstore-python
  A Sigstore client written in Python
  ☆299Updated this week
• CycloneDX / cyclonedx-python
  CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
  ☆343Updated this week
• tonybaloney / pycharm-security
  Finds security holes in your Python projects from PyCharm and GitHub
  ☆346Updated 3 months ago
• sonatype-nexus-community / jake
  Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
  ☆132Updated 6 months ago
• twu / skjold
  Security audit Python project dependencies against security advisory databases.
  ☆66Updated 3 months ago
• spdx / tools-python
  A Python library to parse, validate and create SPDX documents.
  ☆228Updated 5 months ago
• DataDog / guarddog
  GuardDog is a CLI tool to Identify malicious PyPI and npm packages
  ☆872Updated this week
• psf / advisory-database
  This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)
  ☆38Updated this week
• CloudSecurityAlliance / gsd-database
  Global Security Database
  ☆315Updated last year
• dlint-py / dlint
  Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.
  ☆171Updated 2 weeks ago
• trailofbits / it-depends
  A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositorie…
  ☆378Updated this week
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…
  ☆131Updated 2 weeks ago
• sethmlarson / pypi-data
  Data about packages and maintainers on PyPI
  ☆129Updated 2 months ago
• ossf / malicious-packages
  A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…
  ☆422Updated this week
• microsoft / sarif-python-om
  Python classes for the SARIF object model
  ☆44Updated last year
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆102Updated this week
• nilp0inter / cpe
  CPE: Common Platform Enumeration for Python
  ☆96Updated 2 months ago
• aboutcode-org / univers
  Parse and compare all the package versions and all the ranges. From debian, npm, pypi, ruby and more. Process all the version range specs…
  ☆38Updated 3 weeks ago
• pyupio / dparse
  A parser for Python dependency files
  ☆65Updated last year
• psf / sboms-for-python-packages
  Software Bill-of-Materials documents for Python packages
  ☆44Updated 9 months ago
• pypa / gh-action-pip-audit
  A GitHub Action for pip-audit
  ☆79Updated last week
• facebook / sapp
  Post Processor for Facebook Static Analysis Tools.
  ☆140Updated 2 weeks ago
• DataDog / malicious-software-packages-dataset
  An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.
  ☆264Updated this week
• pypi / inspector
  🕵️ File browser for distributions on PyPI
  ☆109Updated last week
• OWASP / www-project-benchmark
  OWASP Foundation Web Respository
  ☆18Updated last week