PyPI Stats

Search Packages

Find Python packages by name, description, GitHub topic, or filter by metrics
CycloneDX
cyclonedx-bom

CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments

1.5M 371 93
anthonyharrison
lib4sbom

Library to ingest and generate SBOMs

237K 41 21
CycloneDX
cyclonedx-py

CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments

62K 371 93
intel
cve-bin-tool

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

16K 2K 619
anthonyharrison
sbom2doc

Transform SBOM contents into a formatted document including markdown and PDF formats

15K 41 8
spdx
ntia-conformance-checker

Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.

15K 86 22
anthonyharrison
sbomdiff

This tool compares two Software Bill of Materials (SBOMs) and reports the differences.

9K 44 8
anthonyharrison
sbom2dot

Create a dependency graph of the components within a SBOM

8K 20 0
anthonyharrison
sbom4files

SBOM generator for files within a directory

8K 9 1
CycloneDX
cyclonedx-buildroot

Create CycloneDX Software Bill of Materials (SBOM) for Buildroot projects

3K 15 7
Taketo-Yoda
uv-sbom-bin

Generate SBOMs for Python projects managed by uv.

2K 3 0
SemClone
osslili

Open Source License Identification Library

2K 6 1
ARPSyndicate
puncia

Panthera(P.)uncia - Official CLI utility for Osprey Vision, Subdomain Center & Exploit Observer.

1K 663 29
oscarvalenzuelab
semantic-copycat-oslili

Semantic Copycat Open Source License Identification Library

763 6 1
SemClone
mcp-semclone

mcp-semclone - Model Context Protocol Server for SEMCL.ONE

568 2 0
trailofbits
vendetect

Command-line tool for automatically detecting vendored and copy/pasted code

515 76 6
oscarvalenzuelab
semantic-copycat-purl2notices

Generate legal notices (attribution to authors and copyrights) for software packages

369 1 0
trailofbits
it-depends

A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories.

270 390 24
moverseai
vcpkg-sbom

📓 A python CLI tool to extract a software bill of materials and license info from a vcpkg manifest.

224 5 1
SemClone
purl2src

Translate Package URLs (PURLs) into validated download URLs for source code artifacts

216 4 0
SemClone
purl2notices

PURL2NOTICES - Package URL (PURL) to Legal Notices

196 1 0
oscarvalenzuelab
semantic-copycat-purl2src

Translate Package URLs (PURLs) into validated download URLs for source code artifacts

182 4 0
SemClone
binarysniffer

BINARYSNIFFER - Binary Static Analyzer

176 3 0
yuanzhou3118
sbom2csv

Transform SBOM contents into a formatted csv file.

159 1 1