PyRank
  • Insights
  • PyPI
  • GitHub
  • Search
  • Compare
  • Advisories
  • Ecosystem
  • About

Devsecops Python Packages

Python packages with the GitHub topic devsecops. Sorted by relevance, with stars and monthly downloads.
pyupio
safety

Safety checks Python dependencies for known security vulnerabilities and suggests the proper remediations for vulnerabilities detected.

6.2M 2K 192
CrowdStrike
crowdstrike-falconpy

The CrowdStrike Falcon SDK for Python

1.3M 501 163
GitGuardian
ggshield

Detect and validate 500+ types of hardcoded secrets with advanced checks. Use it as a pre-commit hook, GitHub Action, or CLI for proactive secret detection and security.

533K 2K 206
anthonyharrison
lib4sbom

Library to ingest and generate SBOMs

361K 44 21
GitGuardian
pygitguardian

Python API client library for the GitGuardian API

335K 87 17
xonsh
xonsh

🐚 Python-powered shell. Full-featured, cross-platform and AI-friendly.

304K 10K 729
prowler-cloud
prowler

Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud environment.

258K 14K 2K
ajinabraham
njsscan

njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.

157K 435 106
anthonyharrison
distro2sbom

Generates SBOM files from system packaging information

149K 40 17
dxa4481
trufflehog

Find, verify, and analyze leaked credentials

133K 27K 2K
duriantaco
skylos

Open source local-first PR scanner that finds dead code, security bugs, secrets, quality regressions, and AI-code mistakes before merge. For first timers refer to https://duriantaco.github.io/skylos/repo-map/

131K 464 23
anthonyharrison
lib4vex

Library to ingest and generate VEX documents

66K 20 4
anthonyharrison
csaf-tool

CSAF generator and validator

61K 9 3
duriantaco
ca9

CA9 is a local evidence engine for Python AppSec triage. It sits after scanners and before engineers waste time, proving which findings matter.

60K 5 0
intel
cve-bin-tool

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

45K 2K 634
tmatens
compose-lint

Security-focused linter for Docker Compose files. Catches dangerous misconfigurations before they reach production. Grounded in OWASP and CIS Docker Benchmark.

29K 2 0
ncouture
mockssh

Mock an SSH server and define all commands it supports (Python, Twisted)

22K 130 25
anthonyharrison
sbom2doc

Transform SBOM contents into a formatted document including markdown and PDF formats

20K 42 9
ochronasec
ochrona

A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs

19K 51 8
bancolombia
devsecops-engine-tools

Toolchain for the evaluation of different devsecops practices

18K 45 19
pezhik
skilltotal

Scan AI components (MCP servers, agent skills, npm/PyPI packages) for malware & risky capabilities. Local, deterministic, evidence-anchored. Free & OSS.

16K 1 0
thothforge
thothctl

A command line interface tool designed for efficient management and automation within your internal developer platform.

16K 4 0
anthonyharrison
sbomdiff

This tool compares two Software Bill of Materials (SBOMs) and reports the differences.

15K 45 8
owasp-dep-scan
owasp-depscan

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.

14K 1K 131
    • Data from PyPI, GitHub, ClickHouse, and BigQuery