PyPI Stats

Search Packages

Find Python packages by name, description, GitHub topic, or filter by metrics
PyCQA
bandit

Bandit is a tool designed to find common security issues in Python code.

21.7M 8K 756
duriantaco
skylos

Open-source PR gate for Python, TS/JS, Java, and Go. Stop merging dead code, secrets, security flows, and AI-code regressions.

135K 428 19
Ostorlab
ostorlab

OXO is a security scanning orchestrator for the modern age.

132K 564 60
nyudenkov
pysentry-rs

🐍 Scan your Python dependencies for known security vulnerabilities with Rust-powered scanner

98K 234 8
msaad00
agent-bom

Open security scanner for AI supply chain and infrastructure: agents, MCP, containers, cloud, GPU, and runtime with blast-radius analysis.

23K 19 6
dmuhs
pythx

A Python library for the MythX smart contract security analysis platform

10K 31 8
gautamvarmadatla
mcpsafetywarden

MCP servers expose tools with no information about what they actually do at runtime. mcpsafetywarden sits between your agent and any MCP server, profiling tool behavior, blocking destructive calls, and running active security audits before you trust them in a workflow.

10K 6 1
sunglasses-dev
sunglasses

Sunglasses for AI agents. Protection layer + neighborhood watch.

9K 1 1
tmatens
compose-lint

Security-focused linter for Docker Compose files. Catches dangerous misconfigurations before they reach production. Grounded in OWASP and CIS Docker Benchmark.

7K 1 0
godaddy
tartufo

Searches through git repositories for high entropy strings and secrets, digging deep into commit history

7K 514 72
sattyamjjain
agent-audit-kit

Security scanner for MCP-connected AI agent pipelines — 77 rules, 13 scanners, OWASP Agentic 10/10, GitHub Action, SARIF, compliance mapping

5K 5 0
Defend-AI-Tech-Inc
agent-discover-scanner

The industry-standard Agentic Identity & Inventory Scanner. Automatically inventory autonomous agents (LangChain, AutoGen, CrewAI, PydanticAI) using static analysis, network heuristics, and eBPF. Foundational tool for AIBOM compliance and AgentOps governance.

3K 12 3
Metbcy
securescan

Security scanning without the SaaS tax. Multi-scanner orchestration, baseline diffing, SBOM + SARIF, signed everything — runs in your terminal, your CI, or a dashboard you own.

3K 0 0
gebalamariusz
cloud-audit

Fast, opinionated AWS security scanner. Curated checks. Zero noise. Copy-paste fixes.

3K 53 10
shadawck
mitrecve

Get all cve corresponding to a specific keyword or a list of keywords from the mitre database (https://cve.mitre.org/)

3K 17 7
spark1security
n0s1

Secret Scanner for Slack, Jira, Confluence, Asana, Wrike, Linear, Zendesk, GitHub, and GitLab

3K 76 17
FeeiCN
esd

Enumeration sub domains(枚举子域名)

2K 1K 164
MegaManSec
gixy-next

Gixy-Next: NGINX Configuration Security Scanner & Performance Checker

2K 162 3
infobyte
faraday-agent-dispatcher

Faraday agent dispatcher to communicate an agent to faraday

2K 48 18
llmarmor
llmarmor

🛡️ OWASP LLM Top 10 security scanner for AI-powered applications

1K 3 0
iteratec
kcwarden

Keycloak auditor

1K 110 9
Nao-30
vpmx

Resumable, trackable script orchestration for VPS and local environments. Security scanning, rollback, crash recovery.

1K 1 0
marcolivierbouch
dirbpy

This is the new version of dirb in python.

1K 36 11
regaan
wshawk

Open source toolkit for WebSocket security testing, web application penetration testing, and stateful attack validation. It combines a CLI scanner, web dashboard, Electron desktop app, browser companion, and project-backed workflows for authorized security assessments.

930 6 1