{"id":15715611,"url":"https://github.com/homebrew/brew-pip-audit","last_synced_at":"2025-06-25T19:04:44.021Z","repository":{"id":38365026,"uuid":"487701289","full_name":"Homebrew/brew-pip-audit","owner":"Homebrew","description":":clipboard: Bulk auditing Python dependencies in Homebrew with pip-audit","archived":false,"fork":false,"pushed_at":"2025-06-18T03:59:24.000Z","size":6047,"stargazers_count":22,"open_issues_count":5,"forks_count":9,"subscribers_count":7,"default_branch":"main","last_synced_at":"2025-06-19T04:57:09.034Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"Ruby","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"bsd-2-clause","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Homebrew.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":"audits/aider-requirements.audit.json","citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null},"funding":{"github":"Homebrew","open_collective":"homebrew","patreon":"homebrew"}},"created_at":"2022-05-02T03:05:23.000Z","updated_at":"2025-06-18T03:59:28.000Z","dependencies_parsed_at":"2023-09-24T10:11:11.889Z","dependency_job_id":"c0c32ee8-a470-470e-8c20-4a85aa56953b","html_url":"https://github.com/Homebrew/brew-pip-audit","commit_stats":{"total_commits":1081,"total_committers":12,"mean_commits":90.08333333333333,"dds":0.1498612395929695,"last_synced_commit":"6d99a9fa94cc9ebaedd24077bc484fba0a6dc6ff"},"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/Homebrew/brew-pip-audit","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Homebrew%2Fbrew-pip-audit","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Homebrew%2Fbrew-pip-audit/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Homebrew%2Fbrew-pip-audit/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Homebrew%2Fbrew-pip-audit/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Homebrew","download_url":"https://codeload.github.com/Homebrew/brew-pip-audit/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Homebrew%2Fbrew-pip-audit/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":261937041,"owners_count":23232846,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-10-03T21:42:09.371Z","updated_at":"2025-06-25T19:04:43.999Z","avatar_url":"https://github.com/Homebrew.png","language":"Ruby","funding_links":["https://github.com/sponsors/Homebrew","https://opencollective.com/homebrew","https://patreon.com/homebrew"],"categories":[],"sub_categories":[],"readme":"# brew-pip-audit: Bulk auditing Python dependencies in Homebrew with osv-scanner\n\n[Homebrew](https://brew.sh/) is a popular package manager for macOS.\nMany of the projects it packages are written in Python. In order to ensure\nreproducible builds, Homebrew precisely pins the version of each Python package\na Homebrew formula depends on.\n\n[`osv-scanner`](https://google.github.io/osv-scanner/) is a tool for checking\na project's dependencies against vulnerability databases in order to determine\nif there are any known vulnerabilities.\n\nThis project takes all of the Python packages depended on by Homebrew formulas\nand runs them through `osv-scanner`. It then takes those audit results and uses\nthem to submit patches to Homebrew.\n\nThis project previously used\n[`pip-audit`](https://pypi.org/project/pip-audit/), instead of `osv-scanner`,\nhence the name.\n\n## The repo\n\nThe following things can be found in this repository:\n\n- `formula2requirements.rb`: Extracts the Python dependencies from Homebrew\n  and writes them out in the `requirements.txt` format.\n- `pip-audit-bulk`: Runs `osv-scanner` over a directory of `requirements.txt`\n  files.\n- `generate-prs.rb`: Automatically generates PRs against\n  `Homebrew/homebrew-core` for formulae with vulnerable dependencies.\n\nSee the generated [GitHub Pages site] for more information, including\ngenerated dependency sets and audits.\n\n[GitHub Pages site]: https://homebrew.github.io/brew-pip-audit/\n\n## Contributing\n\nThis repository is automated, but the automation isn't perfect. You can help\nout by:\n\n- Looking at the [incoming PRs] against `Homebrew/homebrew-core`, and helping\n  debug ones that fail.\n- Improving the performance of our automation (it's currently very slow).\n- Looking at the [action logs] for the PR automation, and helping debug/fix\n  formulae and dependencies that can't be auto-updated.\n\n[incoming PRs]: https://github.com/Homebrew/homebrew-core/pulls?q=is%3Aopen+is%3Apr+author%3ABrewTestBot+%22bump+python+resources%22+in%3Atitle\n\n[action logs]: https://github.com/Homebrew/brew-pip-audit/actions/workflows/auto-pr.yml\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fhomebrew%2Fbrew-pip-audit","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fhomebrew%2Fbrew-pip-audit","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fhomebrew%2Fbrew-pip-audit/lists"}