sonatype-nexus-community / jake
Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
☆119Updated 4 months ago
Alternatives and similar repositories for jake:
Users that are interested in jake are comparing it to the libraries listed below
- CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments☆276Updated this week
- Python implementation of OWASP CycloneDX☆79Updated this week
- Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.☆165Updated 5 months ago
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆73Updated 5 months ago
- Advisory database for Python packages published on pypi.org☆276Updated this week
- A GitHub Action for pip-audit☆73Updated 2 months ago
- A Sigstore client written in Python☆256Updated last week
- Audit python packages for known vulnerabilities☆32Updated 3 years ago
- Python Faker provider for security related data☆38Updated last week
- A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs☆51Updated 2 years ago
- Security audit Python project dependencies against security advisory databases.☆67Updated 6 months ago
- Software Bill-of-Materials documents for Python packages☆35Updated last month
- A Python library to parse, validate and create SPDX documents.☆204Updated 6 months ago
- Data about packages and maintainers on PyPI☆126Updated 2 weeks ago
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆86Updated last week
- Open Source Vulnerability schema.☆197Updated 2 weeks ago
- GitHub action to generate a CycloneDX SBOM for Python☆14Updated 2 months ago
- A parser for Python dependency files☆65Updated 4 months ago
- A Python client for the Snyk API.☆95Updated 7 months ago
- Packaging improvements that could be funded☆54Updated 2 years ago
- Rate your Python packages package friendliness☆217Updated 3 months ago
- Pytest plugin to fake subprocess.☆109Updated last month
- apply a consistent format to `setup.cfg` files☆153Updated last month
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆89Updated this week
- Automatically updated pypi API data, available in bulk via git or sqlite☆77Updated this week
- File identification library for Python☆266Updated 3 weeks ago
- Tool for creating, modifying and validating CycloneDX SBOMs.☆24Updated this week
- Github action to run pre-commit autoupdate☆31Updated 2 weeks ago
- Validation library for simple check on `pyproject.toml`☆155Updated last week
- This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)☆31Updated last month