Reverse Dependencies of packageurl-python

The following projects have a declared dependency on packageurl-python:

• aboutcode.federatedcode — A library for FederatedCode client
• aboutcode.hashid — A library for aboutcode hash-based identifiers for VCID, and PURLs
• aboutcode-toolkit — AboutCode-toolkit is a tool to document the provenance (origin and license) of third-party software using small text files. Collect inventories and generate attribution documentation.
• appthreat-chen — Code Hierarchy Exploration Net (chen)
• appthreat-vulnerability-db — AppThreat's vulnerability database and package search library with a built-in sqlite based storage. OSV, CVE, GitHub, npm are the primary sources of vulnerabilities.
• attributecode — Generate attribution document with input of CSV/Excel/JSON.
• blint — Linter and SBOM generator for binary files.
• capycli — CaPyCli - Clearing Automation Python Command Line Interface for SW360
• checkov — Infrastructure as code static analysis
• cpggen — Generate CPG for multiple languages for use with joern
• csaf-tool — CSAF generator and analyser
• custom-json-diff — CycloneDx BOM and Oasis CSAF diffing and comparison tool.
• cve-bin-tool — CVE Binary Checker Tool
• cyclonedx-bom — CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
• CycloneDX-Buildroot — Create a software bill of materials from the direct dependencies of a Buildroot generated project
• cyclonedx-conan — Creates CycloneDX Software Bill of Materials (SBOM) documents for C/C++ projects using Conan
• cyclonedx-python-lib — Python library for CycloneDX
• devsecops-engine-tools — Tool for DevSecOps strategy
• disclosurecheck — Discover methods for disclosing security vulnerabilities to a project privately.
• django-sbomrepo — Software Bill of Materials Repository for Django
• dverse-agent-python — A package for creating an Agent for the DVerse platform.
• etos-environment-provider — Environment Provider for ETOS.
• etos-test-runner — ETOS Test Runner
• federatedcode — Share software metadata and vulnerabilities in a federated manner over ActivityPub and git
• fetchcode — fetchcode is a library to reliably fetch code via HTTP, FTP and version control systems.
• finite-state-sdk — The official Finite State Python SDK.
• flask-flac — Flask based library to help structure an application with an eye towards CLI apps, not just web.
• fosslight-dependency — FOSSLight Dependency Scanner
• griffon — Red Hat Product Security CLI
• hoppr — A tool for defining, verifying, and transferring software dependencies between environments.
• hoppr-cop — no summary
• hoppr-openssf-scorecard — Hoppr plugin to generate an OpenSSF scorecard
• hoppr-security-commons — Common Library For hoppr-cop
• lbom — A powerful tool filling licenses to CycloneDX files
• lib4vex — VEX generator and consumer library
• ludvig — A simple vulnerability scanner
• meta-package-manager — 🎁 wraps all package managers with a unifying CLI
• open_source_insights_api — Library to consume project Open Source Insights Project from Google
• openchain-telco-sbom-validator — Validator against version 1 of the OpenChain Telco SBOM Guide
• ossindex-lib — A library for querying the OSS Index free catalogue of open source components to help developers identify vulnerabilities, understand risk, and keep their software safe.
• osv-lib — A library for querying OSV (https://osv.dev) distributed vulnerability database.
• owasp-depscan — Fully open-source security audit for project dependencies based on known vulnerabilities and advisories.
• packagedb — A purl (Package URL) Database
• patchwork-cli — no summary
• pdm-sbom — Generate Software Bill of Materials from PDM based projects
• pingsafe-cli — [Deprecated] PingSafe CLI is an extension of our vision to shift-left security with PingSafe.
• psgraph — Infrastructure as code static analysis
• purl-license-checker — Retrieve licenses for purl documented dependencies.
• purl-tools — A small library that supports with various tasks around Package URLs
• purl2vcs — purl2vcs is an add-on library working with the PurlDB to find the version control system (VCS) URL of a package and detect the commit, tags and path for a given version.
• purldb-toolkit — A toolkit and library to use the PurlDB and its API
• python-inspector — python-inspector is is a collection of utilities to collect PyPI package metadata and resolve packages dependencies.
• python-rektor-monitor — no summary
• s1-cns-cli — SentinelOne CNS CLI is an extension of our vision to shift-left security with SentinelOne CNS.
• s1-shift-left-cli — SentinelOne CNS CLI is an extension of our vision to shift-left security with SentinelOne CNS.
• sbom2doc — SBOM documentation tool
• sbomaudit — Audit SBOM contents
• sbomdebt — Determine technical debt for a SBOM
• sbomgrader — SBOM Grader
• scancodeio — Automate software composition analysis pipelines
• scanoss — Simple Python library to leverage the SCANOSS APIs
• tern — An inspection tool to find the OSS compliance metadata of the packages installed in a container image.
• threat-db — A graphql server for vulnerabilities powered by dgraph
• ts-scan — TrustSource PM scanner
• vexy — Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents
• vulnerablecode — VulnerableCode is a free and open database of open source software package vulnerabilities because open source software vulnerabilities data and tools should be free and open source themselves.
• vunnel — vunnel ~= 'vulnerability data funnel'