104 dependents
| Package | Description | Downloads/month |
|---|---|---|
| Prevent cloud misconfigurations and find vulnerabilities during build-time in in... | 23M | |
| Functionality and DataModels of OWASP CycloneDX for Python | 18.7M | |
| CycloneDX Software Bill of Materials (SBOM) generator for Python projects and en... | 1.5M | |
| Library to ingest and generate SBOMs | 237K | |
| :mag: ScanCode detects licenses, copyrights, dependencies by "scanning code" ...... | 74K | |
| Library to ingest and generate VEX documents | 46K | |
| CSAF generator and validator | 33K | |
| The SCANOSS python package providing a simple, easy to consume library for inter... | 30K | |
| Build your own wheels | 29K | |
| A library to reliably fetch code via HTTP, FTP and version control systems. This... | 29K | |
| A tool for defining, verifying, and transferring software dependencies between e... | 27K | |
| A utility to compare json documents containing dynamically-generated fields. | 27K | |
| Vulnerability database and package search for sources such as Linux, OSV, NVD, G... | 26K | |
| Open security scanner for AI supply chain and infrastructure: agents, MCP, conta... | 23K | |
| Toolchain for the evaluation of different devsecops practices | 20K | |
| Cartography is a Python tool that pulls infrastructure assets and their relation... | 19K | |
| OWASP dep-scan is a next-generation security and risk audit tool based on known ... | 18K | |
| The CVE Binary Tool helps you determine if your system includes known vulnerabil... | 16K | |
| :white_check_mark: AboutCode Toolkit provides a simple way to document provenanc... | 15K | |
| Transform SBOM contents into a formatted document including markdown and PDF for... | 15K | |
| Tool for collecting vulnerability data from various sources (used to build the g... | 14K | |
| Inspect Python code and PyPI package manifests. Resolve Python dependencies. | 13K | |
| blint is a Binary Linter that checks the security properties and capabilities of... | 13K | |
| Python library for querying OSS Index | 12K | |
| Fluid Attacks SBOM Library | 9K | |
| 8K | ||
| FOSSLight Dependency Scanner | 8K | |
| 6K | ||
| 🎁 wraps all package managers with a unifying CLI | 5K | |
| ETOS Test Runner | 5K | |
| Semantic Web browser | 5K | |
| :mag: ScanCode detects licenses, copyrights, dependencies by "scanning code" ...... | 5K | |
| Report on quality of SBOM contents | 4K | |
| Code Hierarchy Exploration Net (chen) | 4K | |
| A free and open vulnerabilities database and the packages they impact. And the t... | 4K | |
| CaPyCLI - Python scripts for software license compliance automation with SW360 | 4K | |
| Tools to create and deploy a database of software packages metadata, origin, dep... | 4K | |
| ScanCode.io is a server to script and automate software composition analysis wit... | 4K | |
| Red Hat Product Security CLI | 3K | |
| A free and open vulnerabilities database and the packages they impact. And the t... | 3K | |
| A small library that supports with various tasks around Package URLs | 3K | |
| Common Library For hoppr-cop | 3K | |
| Create CycloneDX Software Bill of Materials (SBOM) for Buildroot projects | 3K | |
| (ARCHIVED) This package is archived and no longer maintained. OSV is still activ... | 3K | |
| TEA Server for PyPI Package SBOMs | 3K | |
| Main public API | 2K | |
| Creates CycloneDX Software Bill of Materials (SBOM) documents for C/C++ projects... | 2K | |
| A Python Ort model serialization library | 2K | |
| GitHub Action for sbomify. | 2K | |
| Generate CPG for multiple languages for code and threat analysis | 2K |
