PyPI Stats

Purl Python Packages

Python packages with the GitHub topic purl. Sorted by relevance, with stars and monthly downloads.
CycloneDX
cyclonedx-python-lib

Functionality and DataModels of OWASP CycloneDX for Python

19.3M 106 63
package-url
packageurl-python

Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and other generous sponsors.

19.2M 89 55
CycloneDX
cyclonedx-bom

CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments

1.5M 371 93
aboutcode-org
scancode-toolkit

:mag: ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet, the Google Summer of Code, Azure credits, nexB and other generous sponsors!

77K 3K 720
CycloneDX
cyclonedx-py

CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments

66K 371 93
aboutcode-org
univers

Parse and compare package versions and ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions. This project is sponsored by an NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and others generous sponsors!

27K 45 21
appthreat
appthreat-vulnerability-db

Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers.

27K 140 22
aboutcode-org
aboutcode-pipeline

ScanCode.io is a server to script and automate software composition analysis with pipelines. This project is sponsored by the European Commission, NLnet NGI0, the Google Summer of Code, nexB and others generous sponsors!

8K 201 191
aboutcode-org
scancode-toolkit-mini

:mag: ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet, the Google Summer of Code, Azure credits, nexB and other generous sponsors!

5K 3K 720
aboutcode-org
aboutcode-hashid

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

4K 662 303
aboutcode-org
minecode-pipelines

Tools to create and deploy a database of software packages metadata, origin, dependencies, and license keyed by PURLs (Package URLs). Supported by AboutCode, sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ , nexB and other fine supporters. Chat is at https://gitter.im/aboutcode-org/discuss

4K 63 68
aboutcode-org
scancodeio

ScanCode.io is a server to script and automate software composition analysis with pipelines. This project is sponsored by the European Commission, NLnet NGI0, the Google Summer of Code, nexB and others generous sponsors!

3K 201 191
nexB
vulnerablecode

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

3K 662 303
OpenRailAssociation
purl-tools

A small library that supports with various tasks around Package URLs

3K 3 2
CycloneDX
cyclonedx-conan

Creates CycloneDX Software Bill of Materials (SBOM) documents for C/C++ projects using Conan

2K 26 14
aboutcode-org
aboutcode-api-auth

No description available

2K 44 20
aboutcode-org
aboutcode-federated

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

2K 662 303
tonylturner
purl2repo

Resolve Package URLs to canonical source, VCS, registry, and artifact hub repositories.

1K 2 3
nexB
licensedcode-index

:mag: ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet, the Google Summer of Code, Azure credits, nexB and other generous sponsors!

1K 3K 721
nexB
licensedcode-data

A packaging of the ScanCode licensedb license and license rules database.

555 3K 721
Malwarebytes
ghas-cli

Command line interface to interact with GitHub Advanced Security.

523 6 2
appthreat
appthreat-vulndb

Vulnerability database and package search for sources such as CVE, GitHub, and so on. Uses a built-in file based storage.

416 140 22
aboutcode-org
purl2vcs

Tools to create and deploy a database of software packages metadata, origin, dependencies, and license keyed by PURLs (Package URLs). Supported by AboutCode, sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ , nexB and other fine supporters. Chat is at https://gitter.im/aboutcode-org/discuss

282 63 68
SemClone
purl2src

Translate Package URLs (PURLs) into validated download URLs for source code artifacts

228 4 0