LAST
ochrona-cli
LAST | ochrona-cli | |
---|---|---|
1 | 2 | |
131 | 52 | |
2.3% | - | |
8.9 | 0.6 | |
about 2 months ago | about 1 year ago | |
Python | Python | |
GNU General Public License v3.0 only | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
LAST
ochrona-cli
What are some alternatives?
pip-audit - Audits Python environments, requirements files and dependency trees for known security vulnerabilities, and can automatically fix them
safety - Safety checks Python dependencies for known security vulnerabilities and suggests the proper remediations for vulnerabilities detected.
ggshield - Find and fix 360+ types of hardcoded secrets and 70+ types of infrastructure-as-code misconfigurations.
best-of-python-dev - ๐ A ranked list of awesome python developer tools and libraries. Updated weekly.
in-toto - in-toto is a framework to protect supply chain integrity.
dephell - :package: :fire: Python project management. Manage packages: convert between formats, lock, install, resolve, isolate, test, build graph, show outdated, audit. Manage venvs, build package, bump version.
anchore-engine - A service that analyzes docker images and scans for vulnerabilities
ThreatPlaybook - A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration
repometascore - repometascore (aka repository metadata scoring) analyzes metadata of the given repository, collects info about its contributors, and outputs the risk level.
dep-scan - OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.
jake - Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
pip-rating - Check the health of your project's requirements and get a score for each dependency.