Ecosyste.ms: Packages

An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.

pypi.org "software-composition-analysis" keyword

surfactant 0.0.0rc5
Modular framework to gather file information, analyze dependencies, and generate an SBOM
7 versions - Latest release: about 1 month ago - 1 dependent repositories - 214 downloads last month - 11 stars on GitHub - 1 maintainer
Top 8.7% on pypi.org
scancode-toolkit-mini 32.1.0 💰
ScanCode is a tool to scan code for license, copyright, package and their documented dependencies...
33 versions - Latest release: about 2 months ago - 1 dependent package - 1 dependent repositories - 502 downloads last month - 1,867 stars on GitHub - 3 maintainers
Top 1.9% on pypi.org
scancode-toolkit 32.1.0 💰
ScanCode is a tool to scan code for license, copyright, package and their documented dependencies...
59 versions - Latest release: about 2 months ago - 12 dependent packages - 68 dependent repositories - 14.3 thousand downloads last month - 1,886 stars on GitHub - 4 maintainers
licensedcode-index 32.1.0 💰
A packaging of the ScanCode licensedb license and license rules pre-built index. Can only be used...
1 version - Latest release: 24 days ago - 377 downloads last month - 1,988 stars on GitHub - 1 maintainer
licensedcode-data 32.1.0 💰
A packaging of the ScanCode licensedb license and license rules database.
1 version - Latest release: 24 days ago - 210 downloads last month - 1,988 stars on GitHub - 1 maintainer
scanoss 1.12.3
Simple Python library to leverage the SCANOSS APIs
53 versions - Latest release: 6 days ago - 1 dependent package - 1 dependent repositories - 3.44 thousand downloads last month - 23 stars on GitHub - 2 maintainers
scancodeio 34.4.0 💰
Automate software composition analysis pipelines
16 versions - Latest release: 28 days ago - 511 downloads last month - 88 stars on GitHub - 3 maintainers
ossindex-lib 1.1.1
A library for querying the OSS Index free catalogue of open source components to help developers ...
11 versions - Latest release: over 1 year ago - 2 dependent packages - 4 dependent repositories - 16.4 thousand downloads last month - 1 stars on GitHub - 2 maintainers
Top 6.3% on pypi.org
dependency-check 0.6.0
Shim to easily install OWASP dependency-check-cli into Python projects
4 versions - Latest release: almost 3 years ago - 1 dependent package - 12 dependent repositories - 8.29 thousand downloads last month - 47 stars on GitHub - 1 maintainer
Top 9.0% on pypi.org
tern 2.12.1
An inspection tool to find the OSS compliance metadata of the packages installed in a container i...
20 versions - Latest release: 10 months ago - 1 dependent repositories - 1.42 thousand downloads last month - 931 stars on GitHub - 2 maintainers
Related Keywords
spdx 7 sbom 6 cyclonedx 6 dependencies 6 license 5 copyright 5 open source 5 licensing 5 sca 5 oss-compliance 5 dependency-graph 5 package-url 5 purl 5 open-source-licensing 4 license-scan 4 license-checking 4 copyright-scan 4 packages 4 provenance 4 spdx-licenses 4 package 3 dependency 3 scan 3 filetype 3 author 3 extract 3 python 3 docker 2 dependency-analysis 2 open-source 2 vulnerabilities 2 SBOM 2 tool 2 OWASP 1 ossindex 1 static-analysis 1 owasp 1 security 1 vulnerability 1 quality-assurance 1 cli-utility 1 cve-scanning 1 security-audit 1 software-supply-chain 1 vulnerability-detection 1 Distribution 1 Container 1 Cloud-Native 1 compliance 1 containers 1 metadata-extraction 1 risk-management 1 supply-chain-security 1 software-bill-of-materials 1 sbom-generator 1 python3 1 hacktoberfest 1 msi 1 ole 1 elf 1 pe 1 scancode 1 scanpipe 1 rootfs 1 vm 1 virtual machine 1 pipeline 1 code analysis 1 container 1 foss-compliance 1 virtual-machine 1 SCA 1