pip-audit VS tan

Compare pip-audit vs tan and see what are their differences.

pip-audit

Audits Python environments, requirements files and dependency trees for known security vulnerabilities, and can automatically fix them (by pypa)

tan

The uncompromising Python code formatter (by jleclanche)
Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
pip-audit tan
22 1
903 30
2.2% -
8.8 7.4
6 days ago 4 months ago
Python Python
Apache License 2.0 MIT License
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

pip-audit

Posts with mentions or reviews of pip-audit. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2024-01-18.

tan

Posts with mentions or reviews of tan. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2022-01-29.
  • Black, the Uncompromising (Python) Code Formatter Is Stable
    12 projects | news.ycombinator.com | 29 Jan 2022
    Congratulations. I'm a Python developer of 17+ years and Black is truly a huge blessing in the Python ecosystem.

    That said, I'm a little sad to see it's gone stable without adding support for tabs, which would be extremely simple to add at this point (cf. https://github.com/jleclanche/tan/commit/e23c038167528bdacdd...). I have a lot of people using this tab-capable fork, that I did not advertise anywhere.

    Łukasz seems to have a personal grudge against tabs which may be why the issue for tab support was closed early on, but there's a plethora of good reasons to support it behind a flag. I don't want to rehash those arguments here on HN but you think you could re-think the approach a bit?

    I'd be happy to do a PR if it's not getting rejected right away with "no discussion allowed" like the last one was (before Black was moved to PSF maintainership).

What are some alternatives?

When comparing pip-audit and tan you can also consider the following projects:

ochrona-cli - A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs

pre-commit-hooks.nix - Seamless integration of https://pre-commit.com git hooks with Nix.

npm-esbuild-audit

setup-dvc - DVC GitHub action

aura - Python source code auditing and static analysis on a large scale

tox-poetry-installer - A plugin for Tox that lets you install test environment dependencies from the Poetry lockfile

squelch

yapf - A formatter for Python files

in-toto - in-toto is a framework to protect supply chain integrity.

husky - Git hooks made easy 🐶 woof!

pre-commit - A framework for managing and maintaining multi-language pre-commit hooks.

dassana - Supercharge your alerts.