Top 23 Python Audit Projects

Audit

• Add a project

1. Amphion

   1 6 9,839 2.5 Python

   Amphion (/æmˈfaɪən/) is a toolkit for Audio, Music, and Speech Generation. Its purpose is to support reproducible research and help junior researchers and engineers get started in the field of audio, music, and speech generation research and development.

   

2. SaaSHub

   www.saashub.com featured

   SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

   

3. ciso-assistant-community

   2 7 4,127 9.9 Python

   CISO Assistant is a one-stop-shop GRC platform for Risk Management, AppSec, Compliance & Audit, TPRM, BIA, Privacy, and Reporting. It supports 150+ global frameworks with automatic control mapping, including ISO 27001, NIST CSF, SOC 2, CIS, PCI DSS, NIS2, DORA, GDPR, HIPAA, CMMC, and more.

   

   Project mention: CISO Assistant, the open-source GRC platform introduces CRQ | news.ycombinator.com | 2025-09-15

4. SysReptor

   3 3 2,491 9.7 Python

   A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automate your pentest reports with ease.

   

5. masvs

   4 10 2,390 4.3 Python

   The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.

   

6. XSRFProbe

   5 1 1,286 6.1 Python

   The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.

   

7. django-easy-audit

   6 4 842 6.0 Python

   Yet another Django audit log app, hopefully the simplest one.

   

8. hubble

   7 1 385 1.8 Python

   Hubble is a modular, open-source security compliance framework. The project provides on-demand profile-based auditing, real-time security event notifications, alerting, and reporting. (by hubblestack)

   

9. arch-security-tracker

   8 1 130 0.0 Python

   Arch Linux Security Tracker

   

10. panoptisch

    9 7 70 0.0 Python

    A recursive dependency scanner for Python projects

    

11. cloud-audit

    10 3 59 8.2 Python

    Fast, opinionated AWS security scanner. Curated checks. Zero noise. Copy-paste fixes.

    

    Project mention: Show HN: Cloud-audit – AWS scanner that chains findings into attack paths | news.ycombinator.com | 2026-04-01

12. codeaudit

    11 1 40 9.2 Python

    Codeaudit - Modern Python source code security analyzer based on distrust.

    

    Project mention: Python source code analyzer based on distrust | news.ycombinator.com | 2025-07-27

13. masscan_as_a_service

    12 3 29 4.0 Python

    masscan as a service

    

14. openclaw-contained

    13 4 28 7.1 Python

    TaskForge runs AI agents in sandboxed Docker containers with capability-based security. Agents start with minimal permissions and must request new capabilities (packages, network access, tools) through a human-in-the-loop approval process. Every approval triggers a container image rebuild, and every LLM interaction is logged for audit.

    

    Project mention: TaskForge – immutable, orchiestration for OpenClaw bots | news.ycombinator.com | 2026-02-27

15. locomo-audit

    14 3 17 5.0 Python

    Full audit of the LoCoMo benchmark

    

    Project mention: Milla Jovovich just released an AI memory system. It reached over 1.5 million people and 5,400 GitHub stars in less than 24 hours. | dev.to | 2026-04-07

    We maintain a public LoCoMo ground-truth audit at github.com/dial481/locomo-audit, with per-conversation error files documenting hallucinations, attribution errors, ambiguous questions, and incomplete answers across all ten conversations. The audit is open for contribution. We believe a new and improved version of LoCoMo would benefit every group working on conversational memory, including the MemPalace maintainers and including ourselves. The goal is better benchmarks, not a kill shot on any individual project.

16. airblackbox

    15 4 17 9.2 Python

    Open-source EU AI Act compliance scanner. 51 checks across Articles 9-15. Drop-in trust layers for LangChain, CrewAI, AutoGen, OpenAI. Local-first, no data leaves your machine.

    

    Project mention: Meta's Rogue AI Agent Just Proved Why AI Governance Can't Wait | dev.to | 2026-03-25

    Site: airblackbox.ai

17. finlang

    16 3 13 9.1 Python

    FinLang — Deterministic, auditable financial rules engine.

    

    Project mention: FinLang – A deterministic, auditable rules engine for finance (AGPL) | news.ycombinator.com | 2025-11-16

18. air-platform

    17 2 9 7.4 Python

    One command to run the full AI audit stack: Gateway + Policy Engine + Episode Store + Jaeger + Prometheus. Make up. 8 seconds.

    

    Project mention: How to Add a Kill Switch to Your AI Agent in 5 Minutes | dev.to | 2026-02-21

    git clone https://github.com/airblackbox/air-platform.git cd air-platform cp .env.example .env

19. revy

    18 1 8 6.4 Python

    Revision control system toolkit for Django models, built with stackholm. (by ertgl)

    

20. unworldly

    19 1 8 7.7 Python

    The flight recorder for AI agents. Tamper-proof, ISO 42001 + HIPAA-compliant audit trails for everything AI agents do on your system. File changes + shell commands + PHI detection + agent identity.

    

    Project mention: Show HN: Unworldly – A flight recorder for AI agents (tamper-proof, HIPAA) | news.ycombinator.com | 2026-02-25

21. aiir

    20 1 5 9.7 Python

    AI Integrity Receipts — generate, verify, and attest cryptographic receipts for commits with declared AI involvement. Release verification with SLSA-compatible VSA. Zero dependencies. Apache 2.0.

    

    Project mention: Show HN: AIIR: track AI-assisted Git commits with cryptographic receipts | news.ycombinator.com | 2026-03-19

22. casa-runtime

    21 2 4 7.6 Python

    Deterministic execution control plane for autonomous agent systems - pre-execution governance with audit-grade traces.

    

    Project mention: AI Governance That Runs: Building a Deterministic Execution Gate | news.ycombinator.com | 2026-03-16

23. piqrypt

    22 3 3 9.4 Python

    AI agent governance layer — sign, monitor and control every agent action. EU AI Act · ANSSI · NIST ready.

    

    Project mention: Watch your CrewAI agents in real-time with PiQrypt Vigil | dev.to | 2026-04-16

    Full demo code: github.com/piqrypt/piqrypt/demos

24. assay

    23 2 3 9.7 Python

    Signed, offline-verifiable evidence for tool-using AI systems.

    

    Project mention: I scanned 30 popular AI projects for tamper-evident LLM evidence. 0 had it | news.ycombinator.com | 2026-02-21

Python Audit related posts

• Show HN: AERF, signed control events for AI agent actions

  3 projects | news.ycombinator.com | 2 Jun 2026

• GateGraph – a gate that decides if an AI agent action may proceed before it runs

  1 project | news.ycombinator.com | 23 May 2026

• I Built a Runtime Governance Tool for AI Agents — Here's Why Your Agents Need It

  3 projects | dev.to | 7 May 2026

• Watch your CrewAI agents in real-time with PiQrypt Vigil

  1 project | dev.to | 16 Apr 2026

• Show HN: Cloud-audit – AWS scanner that chains findings into attack paths

  1 project | news.ycombinator.com | 1 Apr 2026

• Meta's Rogue AI Agent Just Proved Why AI Governance Can't Wait

  1 project | dev.to | 25 Mar 2026

• Show HN: AI agents have no memory – PiQrypt makes their actions verifiable

  1 project | news.ycombinator.com | 24 Mar 2026
• A note from our sponsor - SaaSHub
  www.saashub.com | 14 Jun 2026

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending Python projects with our weekly report!