advisory-database
Advisory database for Python packages published on pypi.org (by pypa)
dwflist
The DWF IDs (by distributedweaknessfiling)
advisory-database | dwflist | |
---|---|---|
5 | 2 | |
238 | 36 | |
0.4% | - | |
7.3 | 9.9 | |
5 days ago | almost 3 years ago | |
Creative Commons Attribution 4.0 | Creative Commons Zero v1.0 Universal |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
advisory-database
Posts with mentions or reviews of advisory-database.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2023-07-09.
- LangChain Arbitrary Command Execution - CVE-2023-34541
-
pyscan v0.1.0: A python dependency vulnerability scanner, written in Rust.
source
-
Auditing your python environment
The second tool I want to introduce to you is pip-audit. It is maintained by folks at Trails of Bit with some Google support. It uses the Pypa Advisory Database via the PyPI JSON API as a source of vulnerability reports.
- Adding Auditing to Pip
-
Google's unified vulnerability schema for open source supports Rust on launch
Today, we’re excited to announce a new milestone in expanding OSV to several key open-source ecosystems: Go, Rust, Python, and DWF.
dwflist
Posts with mentions or reviews of dwflist.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2021-06-24.
-
Google's unified vulnerability schema for open source supports Rust on launch
Today, we’re excited to announce a new milestone in expanding OSV to several key open-source ecosystems: Go, Rust, Python, and DWF.
-
Bug discovery diaries: Abusing VoIPmonitor for Remote Code Execution
We requested a CVE through DWF for this one and got CVE-2021-1000005. It is not yet replicated on the official CVE list. CVSS score according to an X-Force Vulnerability Report is 9.8.
What are some alternatives?
When comparing advisory-database and dwflist you can also consider the following projects:
pyscan - python dependency vulnerability scanner, written in Rust.
advisory-db - Security advisory database for Rust crates published through crates.io
vulndb - [mirror] The Go Vulnerability Database
advisory-db - Security advisory database for Rust crates published through crates.io
publications - Publications from Trail of Bits
rustsec - RustSec API & Tooling
langchain - 🦜🔗 Build context-aware reasoning applications
advisories - Security advisories published by Enable Security
Nuget Package Manager - Repo for NuGet Client issues
advisory-database - Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
advisory-database vs pyscan
dwflist vs advisory-db
advisory-database vs vulndb
dwflist vs advisory-db
advisory-database vs advisory-db
dwflist vs vulndb
advisory-database vs publications
dwflist vs rustsec
advisory-database vs langchain
dwflist vs advisories
advisory-database vs Nuget Package Manager
dwflist vs advisory-database