jake
Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle. (by sonatype-nexus-community)
ochrona-cli
A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs (by ochronasec)
jake | ochrona-cli | |
---|---|---|
1 | 2 | |
101 | 52 | |
2.0% | - | |
7.6 | 0.6 | |
16 days ago | about 1 year ago | |
Python | Python | |
Apache License 2.0 | MIT License |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
jake
Posts with mentions or reviews of jake.
We have used some of these posts to build our list of alternatives
and similar projects.
-
Software downloaded 30,000 times from PyPI ransacked developers’ machines
Companies like Sonatype and Snyk usually offer free tools to scan packages for vulnerabilities, e.g. https://github.com/sonatype-nexus-community/jake
ochrona-cli
Posts with mentions or reviews of ochrona-cli.
We have used some of these posts to build our list of alternatives
and similar projects.
What are some alternatives?
When comparing jake and ochrona-cli you can also consider the following projects:
vulnerablecode - A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/
pip-audit - Audits Python environments, requirements files and dependency trees for known security vulnerabilities, and can automatically fix them