PyRank
  • Insights
  • PyPI
  • GitHub
  • Search
  • Compare
  • Advisories
  • Ecosystem
  • About

Compliance Python Packages

Python packages with the GitHub topic compliance. Sorted by relevance, with stars and monthly downloads.
bridgecrewio
checkov

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

19.8M 9K 1K
cloud-custodian
c7n-org

Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources

6.7M 6K 2K
cloud-custodian
c7n

Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources

1.9M 6K 2K
prowler-cloud
prowler

Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud environment.

258K 14K 2K
eerkunt
terraform-compliance

a lightweight, security focused, BDD test framework against terraform.

162K 1K 159
cloud-custodian
c7n-mailer

Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources

117K 6K 2K
oscal-compass
compliance-trestle

An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.

95K 261 101
cloud-custodian
c7n-azure

Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources

90K 6K 2K
microsoft
agent-governance-toolkit

AI Agent Governance Toolkit — Policy enforcement, zero-trust identity, execution sandboxing, and reliability engineering for autonomous AI agents. Covers 10/10 OWASP Agentic Top 10.

84K 5K 675
microsoft
agent-governance-toolkit-core

AI Agent Governance Toolkit — Policy enforcement, zero-trust identity, execution sandboxing, and reliability engineering for autonomous AI agents. Covers 10/10 OWASP Agentic Top 10.

55K 5K 675
layer1labs
specsmith

AEE governance CLI for AI-assisted dev — WI lifecycle (specsmith wi), preflight gates, multi-agent dispatch, requirements<->test traceability, ESDB, MCP server, compliance, 64 project types, 136 skills, and 1607 tests.

51K 8 1
microsoft
agent-governance-toolkit-integrations

AI Agent Governance Toolkit — Policy enforcement, zero-trust identity, execution sandboxing, and reliability engineering for autonomous AI agents. Covers 10/10 OWASP Agentic Top 10.

47K 5K 675
microsoft
agent-governance-toolkit-cli

AI Agent Governance Toolkit — Policy enforcement, zero-trust identity, execution sandboxing, and reliability engineering for autonomous AI agents. Covers 10/10 OWASP Agentic Top 10.

45K 5K 675
microsoft
agent-governance-toolkit-protocols

AI Agent Governance Toolkit — Policy enforcement, zero-trust identity, execution sandboxing, and reliability engineering for autonomous AI agents. Covers 10/10 OWASP Agentic Top 10.

44K 5K 675
cloud-custodian
c7n-gcp

Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources

43K 6K 2K
datafog
datafog

Offline PII firewall for AI agents and LLM apps: fast local detection and redaction, Claude Code hook, LiteLLM guardrail. Zero network calls, one dependency.

41K 66 14
adeptex
whispers

Identify hardcoded secrets in static structured text (version 2)

30K 100 12
vaaraio
vaara

Open-source evidence layer for AI governance. Gates every AI agent tool call against your policy and writes a hash-chained execution record an auditor verifies offline, without trusting the operator. Root-agnostic, and binds to a TPM 2.0 or SEV-SNP hardware root when present. Your environment, no SaaS, no telemetry. AGPL-3.0.

28K 10 1
cloud-custodian
c7n-left

Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources

24K 6K 2K
spdx
ntia-conformance-checker

Validate SPDX 2 and 3 SBOM against NTIA, CISA, and other minimum element requirements.

22K 89 24
microsoft
agent-os-kernel

AI Agent Governance Toolkit — Policy enforcement, zero-trust identity, execution sandboxing, and reliability engineering for autonomous AI agents. Covers 10/10 OWASP Agentic Top 10.

22K 5K 675
Skyscanner
cfripper

Library and CLI tool for analysing CloudFormation templates and check them for security compliance.

18K 416 57
pretorin-ai
pretorin

CLI and MCP server for Pretorin Compliance API

14K 5 3
owasp-dep-scan
owasp-depscan

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.

14K 1K 131
    • Data from PyPI, GitHub, ClickHouse, and BigQuery