Skip to main content

Discover methods for disclosing security vulnerabilities to a project privately.

Project description

Scorecard supply-chain security

Disclosure Check

A tool for detecting disclosure mechanisms for open source projects

disclosure-check

Usage

Download the latest .tar.gz file from the releases page.

$ pip install disclosurecheck-VERSION.tar.gz
$ disclosurecheck --help

usage: OpenSSF Vulnerability Disclosure Mechanism Detector [-h] [--verbose] [--json] package_url

positional arguments:
  package_url  Package URL for the project/package you want to analyze.

options:
  -h, --help   show this help message and exit
  --verbose    Show extra logging.
  --json       Output as JSON.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

disclosurecheck-0.0.6.tar.gz (27.6 kB view hashes)

Uploaded Source

Built Distribution

disclosurecheck-0.0.6-py3-none-any.whl (39.7 kB view hashes)

Uploaded Python 3

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page