Alternatives and similar repositories for gh-action-pip-audit:

Users that are interested in gh-action-pip-audit are comparing it to the libraries listed below

• sigstore / sigstore-python
  A Sigstore client written in Python
  ☆249Updated this week
• sigstore / gh-action-sigstore-python
  A GitHub Action for sigstore-python
  ☆48Updated 2 weeks ago
• psf / advisory-database
  This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)
  ☆30Updated last month
• pypi / inspector
  🕵️ File browser for distributions on PyPI
  ☆99Updated this week
• sethmlarson / pypi-data
  Data about packages and maintainers on PyPI
  ☆125Updated 2 months ago
• davidism / gha-update
  Update GitHub Actions version pins in GitHub workflow files.
  ☆26Updated 4 months ago
• pypa / abi3audit
  Scans Python packages for abi3 violations and inconsistencies
  ☆104Updated this week
• pypi-data / pypi-json-data
  Automatically updated pypi API data, available in bulk via git or sqlite
  ☆69Updated this week
• trufflesecurity / how-to-rotate
  An open-source collection of API key rotation tutorials.
  ☆63Updated last month
• pypi-data / pypi-aws-secrets
  This repo scans pypi for AWS keys
  ☆106Updated 10 months ago
• aboutcode-org / pip-requirements-parser
  a mostly correct pip requirements parsing library
  ☆20Updated 4 months ago
• dlint-py / dlint
  Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.
  ☆162Updated 2 months ago
• aswinnnn / pyscan
  python dependency vulnerability scanner, written in Rust.
  ☆195Updated last month
• Julian / regret
  You made a thing, but now you wish it'd go away... Deprecations, a love story.
  ☆14Updated 2 months ago
• tox-dev / tox-gh
  Github Action support for tox 4 and later
  ☆56Updated this week
• abravalheri / validate-pyproject
  Validation library for simple check on `pyproject.toml`
  ☆144Updated this week
• sonatype-nexus-community / jake
  Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
  ☆116Updated 2 months ago
• mam-dev / security-constraints
  Fetches security vulnerabilities and creates pip-constraints based on them.
  ☆12Updated this week
• pypa / advisory-database
  Advisory database for Python packages published on pypi.org
  ☆271Updated this week
• tox-dev / pyproject-fmt
  ☆175Updated this week
• tonybaloney / netimages
  tool for sniffing images over HTTP traffic and showing them on the console. Designed for remote shells.
  ☆12Updated 4 years ago
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆96Updated this week
• kdeldycke / click-extra
  🌈 Drop-in replacement for Click to make user-friendly and colorful CLI
  ☆77Updated this week
• synacktiv / octoscan
  Octoscan is a static vulnerability scanner for GitHub action workflows.
  ☆188Updated last week
• ossf / oss-vulnerability-guide
  A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…
  ☆119Updated last week
• pyupio / dparse
  A parser for Python dependency files
  ☆64Updated 2 months ago
• psf / fundable-packaging-improvements
  Packaging improvements that could be funded
  ☆54Updated last year
• omnilib / thx
  Simple, composable command runner for Python projects
  ☆30Updated 4 months ago
• kushaldas / johnnycanencrypt
  Python module for OpenPGP written in Rust.
  ☆52Updated 2 weeks ago
• pypi-data / website
  next.js website powering https://py-code.org/
  ☆30Updated 2 months ago