patton
patton copied to clipboard
Python raw dependency parser
Add support for searching for vulnerabilities in Python projects.
First we have to resolve the final version of all the components on which the the project depends on. After that we need to map the library name and version to a CPE and finally search for vulnerabilities on those CPEs.
We need support for traditional requirements and pipenv at least.