pypa / gh-action-pip-auditLinks
A GitHub Action for pip-audit
β74Updated last week
Alternatives and similar repositories for gh-action-pip-audit
Users that are interested in gh-action-pip-audit are comparing it to the libraries listed below
Sorting:
- π΅οΈ File browser for distributions on PyPIβ105Updated last week
- This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)β35Updated last week
- A Sigstore client written in Pythonβ273Updated this week
- A GitHub Action for sigstore-pythonβ52Updated this week
- Update GitHub Actions version pins in GitHub workflow files.β30Updated last week
- Data about packages and maintainers on PyPIβ128Updated 2 months ago
- Automatically updated pypi API data, available in bulk via git or sqliteβ78Updated this week
- python dependency vulnerability scanner, written in Rust.β195Updated 2 weeks ago
- Software Bill-of-Materials documents for Python packagesβ41Updated 4 months ago
- Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.β166Updated 7 months ago
- Fetches security vulnerabilities and creates pip-constraints based on them.β12Updated 4 months ago
- a mostly correct pip requirements parsing libraryβ20Updated 9 months ago
- Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.β120Updated 2 weeks ago
- Action to have pip install from a requirements file as securely as possibleβ41Updated 3 years ago
- Scans Python packages for abi3 violations and inconsistenciesβ111Updated last week
- Packaging improvements that could be fundedβ54Updated 2 years ago
- Validation library for simple check on `pyproject.toml`β163Updated 2 weeks ago
- A parser for Python dependency filesβ65Updated 7 months ago
- ADR Tools but using Pythonβ34Updated 3 weeks ago
- next.js website powering https://py-code.org/β31Updated 7 months ago
- Security tool against dependency typosquatting attacksβ52Updated this week
- CLI to open PEPs in your browserβ37Updated last week
- A modern code-injection framework for Python. Like Pyrasite but Kubernetes-aware.β65Updated last month
- A tool for preventing the installation of malicious PyPI and npm packagesβ149Updated this week
- Python bindings for rage (age in Rust)β66Updated last week
- A tool to generate a SBOM (Software Bill of Materials) for an installed Python moduleβ33Updated 3 months ago
- A decorator to aid in annotating logs for easier reading and searchingβ87Updated this week
- Creation & manipulation of PyPI tokensβ12Updated this week
- π Drop-in replacement for Click to make user-friendly and colorful CLIβ87Updated this week
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and discβ¦β122Updated 5 months ago