PyRank

Oscal Python Packages

Python packages with the GitHub topic oscal. Sorted by relevance, with stars and monthly downloads.
oscal-compass
compliance-trestle

An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.

84K 253 102
polycentric-labs
evidentia-core

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

17K 1 0
polycentric-labs
evidentia-ai

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

15K 1 0
polycentric-labs
evidentia-collectors

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

15K 1 0
polycentric-labs
evidentia-integrations

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

14K 1 0
polycentric-labs
evidentia

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

14K 1 0
polycentric-labs
evidentia-api

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

14K 1 0
polycentric-labs
evidentia-mcp

Open-source Python GRC tool: gap analysis, AI risk statements, OSCAL-first compliance automation. Enterprise-grade evidence integrity (Sigstore + GPG), CycloneDX SBOM, PyPI Trusted Publisher OIDC + PEP 740 attestations.

6K 1 0
oscal-compass
compliance-trestle-fedramp

Compliance trestle plugin to support FedRAMP specific functionality.

3K 3 3
Venturalitica
venturalitica

AI assurance that compiles. Turn EU AI Act + ISO 42001 + DORA controls into executable OSCAL policy and enforce it at training time with one decorator.

2K 5 3
allenfbyrd
controlbridge-ai

DEPRECATED: renamed to 'evidentia-ai'. Transitional re-export shim; removed in v0.7.0.

2K 1 0
allenfbyrd
controlbridge-core

DEPRECATED: renamed to 'evidentia-core'. Transitional re-export shim; removed in v0.7.0.

2K 1 0
allenfbyrd
controlbridge-collectors

DEPRECATED: renamed to 'evidentia-collectors'. Transitional re-export shim; removed in v0.7.0.

2K 1 0
allenfbyrd
controlbridge-integrations

DEPRECATED: renamed to 'evidentia-integrations'. Transitional re-export shim; removed in v0.7.0.

2K 1 0
allenfbyrd
controlbridge

DEPRECATED: renamed to 'evidentia'. Transitional re-export shim; removed in v0.7.0.

2K 1 0
allenfbyrd
controlbridge-api

DEPRECATED: renamed to 'evidentia-api'. Transitional re-export shim; removed in v0.7.0.

1K 1 0
Cope-Labs
selvo

Linux dependency blast-radius ranker — surfaces highest-value CVE patch opportunities

641 0 0
awslabs
mcp-server-for-oscal

OSCAL tools for AI agents

589 43 6
Cope-Labs
selvo-client

Linux dependency risk scanner — distro-aware CVE prioritisation with blast-radius scoring

17 0 0