PyRank
  • Insights
  • PyPI
  • GitHub
  • Search
  • Compare
  • Advisories
  • Ecosystem
  • About

Oscal Python Packages

Python packages with the GitHub topic oscal. Sorted by relevance, with stars and monthly downloads.
oscal-compass
compliance-trestle

An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.

95K 261 101
polycentric-labs
evidentia-core

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

8K 4 1
polycentric-labs
evidentia-ai

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

7K 4 1
polycentric-labs
evidentia-collectors

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

7K 4 1
polycentric-labs
evidentia-api

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

6K 4 1
polycentric-labs
evidentia-integrations

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

6K 4 1
polycentric-labs
evidentia

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

6K 4 1
polycentric-labs
evidentia-mcp

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

5K 4 1
polycentric-labs
evidentia-eval

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

4K 4 1
oscal-compass
compliance-trestle-fedramp

Compliance trestle plugin to support FedRAMP specific functionality.

2K 3 3
awslabs
mcp-server-for-oscal

OSCAL tools for AI agents

1K 47 7
Venturalitica
venturalitica

Frictionless Governance for AI

828 5 3
allenfbyrd
controlbridge-ai

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

756 4 1
allenfbyrd
controlbridge

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

750 4 1
allenfbyrd
controlbridge-integrations

DEPRECATED: renamed to 'evidentia-integrations'. Transitional re-export shim; removed in v0.7.0.

720 4 1
allenfbyrd
controlbridge-collectors

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

719 4 1
allenfbyrd
controlbridge-core

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

712 4 1
SamuelBlickle
grundschutz-mcp

MCP server that makes the BSI IT-Grundschutz++ compendium queryable for AI agents and ISMS tooling.

519 3 0
Polycentric-Labs
regrails

Codify US federal regulations (FERPA + Title IV) into machine-readable rules with verbatim-text faithfulness gates, risk-tiered AI guardrails, and an MCP server. Proof-of-concept.

376 1 0
allenfbyrd
controlbridge-api

DEPRECATED: renamed to 'evidentia-api'. Transitional re-export shim; removed in v0.7.0.

346 4 1
Cope-Labs
selvo

Linux dependency blast-radius ranker — surfaces highest-value CVE patch opportunities

75 0 0
Cope-Labs
selvo-client

Thin API client for selvo.dev — use when you cannot install the full selvo package

5 0 0
    • Data from PyPI, GitHub, ClickHouse, and BigQuery