Ecosyste.ms: Packages
An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.
pypi.org "purl" keyword
appthreat-vulndb 1.0.4 💰
Vulnerability database and package search for sources such as CVE, GitHub, and so on. Uses a buil...5 versions - Latest release: over 4 years ago - 1 dependent package - 91 downloads last month - 72 stars on GitHub - 1 maintainer
Top 6.4% on pypi.org
126 versions - Latest release: about 1 month ago - 2 dependent packages - 2 dependent repositories - 6.78 thousand downloads last month - 72 stars on GitHub - 1 maintainer
appthreat-vulnerability-db 6.0.2 💰
AppThreat's vulnerability database and package search library with a built-in sqlite based storag...126 versions - Latest release: about 1 month ago - 2 dependent packages - 2 dependent repositories - 6.78 thousand downloads last month - 72 stars on GitHub - 1 maintainer
purl2vcs
purl2vcs is an add-on library working with the PurlDB to find the version control system (VCS) UR...1 version - 28 stars on GitHub
Top 1.9% on pypi.org
59 versions - Latest release: 2 months ago - 12 dependent packages - 68 dependent repositories - 16.8 thousand downloads last month - 1,886 stars on GitHub - 4 maintainers
scancode-toolkit 32.1.0 💰
ScanCode is a tool to scan code for license, copyright, package and their documented dependencies...59 versions - Latest release: 2 months ago - 12 dependent packages - 68 dependent repositories - 16.8 thousand downloads last month - 1,886 stars on GitHub - 4 maintainers
Top 7.2% on pypi.org
83 versions - Latest release: 3 months ago - 1 dependent package - 2 dependent repositories - 1.08 thousand downloads last month - 438 stars on GitHub - 1 maintainer
meta-package-manager 5.15.0 💰
🎁 wraps all package managers with a unifying CLI83 versions - Latest release: 3 months ago - 1 dependent package - 2 dependent repositories - 1.08 thousand downloads last month - 438 stars on GitHub - 1 maintainer
h2-vulnerability-db 2.0.2 💰
AppThreat's vulnerability database and package search library with a built-in file based storage....1 version - Latest release: about 2 years ago - 1 dependent repositories - 4 downloads last month - 72 stars on GitHub - 1 maintainer
Top 3.6% on pypi.org
104 versions - Latest release: 27 days ago - 22 dependent packages - 127 dependent repositories - 1.74 million downloads last month - 59 stars on GitHub - 5 maintainers
cyclonedx-python-lib 7.3.4 💰
Python library for CycloneDX104 versions - Latest release: 27 days ago - 22 dependent packages - 127 dependent repositories - 1.74 million downloads last month - 59 stars on GitHub - 5 maintainers
scancodeio 34.4.0 💰
Automate software composition analysis pipelines17 versions - Latest release: about 1 month ago - 331 downloads last month - 88 stars on GitHub - 3 maintainers
licensedcode-data 32.1.0 💰
A packaging of the ScanCode licensedb license and license rules database.1 version - Latest release: about 1 month ago - 212 downloads last month - 1,992 stars on GitHub - 1 maintainer
licensedcode-index 32.1.0 💰
A packaging of the ScanCode licensedb license and license rules pre-built index. Can only be used...1 version - Latest release: about 1 month ago - 380 downloads last month - 1,992 stars on GitHub - 1 maintainer
Top 8.7% on pypi.org
33 versions - Latest release: 2 months ago - 1 dependent package - 1 dependent repositories - 424 downloads last month - 1,867 stars on GitHub - 3 maintainers
scancode-toolkit-mini 32.1.0 💰
ScanCode is a tool to scan code for license, copyright, package and their documented dependencies...33 versions - Latest release: 2 months ago - 1 dependent package - 1 dependent repositories - 424 downloads last month - 1,867 stars on GitHub - 3 maintainers
vulnerablecode 33.6.3 💰
VulnerableCode is a free and open database of open source software package vulnerabilities becaus...27 versions - Latest release: 6 months ago - 279 downloads last month - 476 stars on GitHub - 3 maintainers
Top 7.3% on pypi.org
22 versions - Latest release: 9 months ago - 4 dependent packages - 6 dependent repositories - 14.1 thousand downloads last month - 27 stars on GitHub - 4 maintainers
univers 30.11.0 💰
A mostly universal library to parse and compare software package versions and version ranges. A c...22 versions - Latest release: 9 months ago - 4 dependent packages - 6 dependent repositories - 14.1 thousand downloads last month - 27 stars on GitHub - 4 maintainers
purl-python 0.2.1
A "purl" aka. package URL parser and builder. [deprecated name: use instead packageurl-python at ...4 versions - Latest release: over 6 years ago - 1 dependent repositories - 36 downloads last month - 59 stars on GitHub - 1 maintainer
Top 3.0% on pypi.org
43 versions - Latest release: 3 months ago - 50 dependent packages - 271 dependent repositories - 1.79 million downloads last month - 59 stars on GitHub - 5 maintainers
packageurl-python 0.15.0
A purl aka. Package URL parser and builder43 versions - Latest release: 3 months ago - 50 dependent packages - 271 dependent repositories - 1.79 million downloads last month - 59 stars on GitHub - 5 maintainers
cyclonedx-py 1.0.1 💰
Alias for package 'cyclonedx-bom'2 versions - Latest release: 4 months ago - 1 dependent package - 508 downloads last month - 176 stars on GitHub - 4 maintainers
Top 3.0% on pypi.org
93 versions - Latest release: about 1 month ago - 10 dependent packages - 152 dependent repositories - 156 thousand downloads last month - 210 stars on GitHub - 5 maintainers
cyclonedx-bom 4.4.3 💰
CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments93 versions - Latest release: about 1 month ago - 10 dependent packages - 152 dependent repositories - 156 thousand downloads last month - 210 stars on GitHub - 5 maintainers
purldb-toolkit 0.1.0 💰
A toolkit and library to use the PurlDB and its API1 version - Latest release: 3 months ago - 15 downloads last month - 28 stars on GitHub - 2 maintainers
dejacode 5.0.0 💰
Automate open source license compliance and ensure supply chain integrity1 version - Latest release: 6 months ago - 9 downloads last month - 16 stars on GitHub - 1 maintainer
packagedb 2.0.0 💰
A purl (Package URL) Database1 version - Latest release: over 1 year ago - 1 dependent package - 13 downloads last month - 28 stars on GitHub - 2 maintainers
cyclonedx-conan 0.4.1 💰
Creates CycloneDX Software Bill of Materials (SBOM) documents for C/C++ projects using Conan3 versions - Latest release: 8 months ago - 1 dependent repositories - 1.2 thousand downloads last month - 23 stars on GitHub - 5 maintainers
minecode 2.0.0 💰
MineCode - A purl mining tool1 version - Latest release: over 1 year ago - 11 downloads last month - 28 stars on GitHub - 1 maintainer
Related Keywords
package-url
18
sca
12
spdx
10
package
10
cyclonedx
10
sbom
9
open source
9
licensing
6
copyright
6
license
6
dependency
6
scan
6
dependencies
6
SBOM
5
dependency-graph
5
python
5
software-composition-analysis
5
copyright-scan
4
license-checking
4
license-scan
4
open-source-licensing
4
oss-compliance
4
packages
4
provenance
4
spdx-licenses
4
extract
4
author
4
filetype
4
scancode
4
owasp
4
vulnerability-detection
4
vulnerability-database
4
nvd
4
bom
4
cve
4
vulnerabilities
3
software-bill-of-materials
3
package url
3
pip
3
bill-of-materials
3
library
3
advisories
3
sbom-generator
3
cli
3
database
3
vers
3
poetry
2
vex
2
saasbom
2
sbom-tool
2
packagedb
2
purldb
2
obom
2
mbom
2
PURL
2
SPDX
2
BOM
2
OWASP
2
CycloneDX
2
package-manager
2
environment
2
conda
2
hacktoberfest
2
package manager
2
url
2
osv
2
python3
2
open-source
2
foss-compliance
2
container
2
code analysis
2
pipeline
2
virtual machine
2
vm
2
rootfs
2
docker
2
scanpipe
2
requirements
2
version
2
pacman
2
cpp
1
maven
1
ebuild
1
gentoo
1
rpm
1
pypi
1
arch
1
package URL
1
version range
1
release
1
utilities
1
semver
1
vulnerability-scanners
1
vulnerability-identification
1
vulnerability-databases
1
vulndb
1
snyk
1
security-tools
1
cargo
1
ossindex
1