PyPI Stats

Search Packages

Find Python packages by name, description, GitHub topic, or filter by metrics
CycloneDX
cyclonedx-python-lib

Functionality and DataModels of OWASP CycloneDX for Python

18.7M 106 63
CycloneDX
cyclonedx-bom

CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments

1.5M 371 93
fsfe
reuse

This is a mirror of https://codeberg.org/fsfe/reuse-tool

367K 575 163
anthonyharrison
lib4sbom

Library to ingest and generate SBOMs

237K 41 21
anthonyharrison
distro2sbom

Generates SBOM files from system packaging information

85K 38 16
aboutcode-org
scancode-toolkit

:mag: ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet, the Google Summer of Code, Azure credits, nexB and other generous sponsors!

74K 3K 720
CycloneDX
cyclonedx-py

CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments

62K 371 93
anthonyharrison
lib4vex

Library to ingest and generate VEX documents

46K 20 4
anthonyharrison
csaf-tool

CSAF generator and validator

33K 9 3
msaad00
agent-bom

Open security scanner for AI supply chain and infrastructure: agents, MCP, containers, cloud, GPU, and runtime with blast-radius analysis.

23K 19 6
owasp-dep-scan
owasp-depscan

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.

18K 1K 129
trusera
ai-bom

AI Bill of Materials — discover every AI agent, model, and API in your infrastructure

17K 212 57
intel
cve-bin-tool

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

16K 2K 619
anthonyharrison
sbom2doc

Transform SBOM contents into a formatted document including markdown and PDF formats

15K 41 8
spdx
ntia-conformance-checker

Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.

15K 86 22
lgtm-hq
lintro

Making linters play nice... Mostly.

15K 1 0
owasp-dep-scan
ds-analysis-lib

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.

14K 1K 129
owasp-dep-scan
ds-xbom-lib

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.

14K 1K 129
owasp-dep-scan
ds-reporting-lib

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.

14K 1K 129
owasp-dep-scan
blint

blint is a Binary Linter that checks the security properties and capabilities of your executables. It can also generate a Software Bill-of-Materials (SBOM) for supported binaries.

13K 445 45
nightlark
anchore-syft

Python wheels for installing Anchore's Syft tool for generating a Software Bill of Materials

9K 1 1
anthonyharrison
sbomdiff

This tool compares two Software Bill of Materials (SBOMs) and reports the differences.

9K 44 8
anthonyharrison
sbom4python

A tool to generate a SBOM (Software Bill of Materials) for an installed Python module

8K 37 11
anthonyharrison
sbom2dot

Create a dependency graph of the components within a SBOM

8K 20 0