DORA Compliance Auditor for OpenAPI Specs

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for 0D15E0 from gravatar.com 0D15E0

Unverified details

These details have not been verified by PyPI
Meta
Report project as malware

Project description

PanDoraSpec

The Open DORA Compliance Engine for OpenAPI Specs.

PanDoraSpec is a CLI tool that performs deep technical due diligence on your APIs to verify compliance with DORA (Digital Operational Resilience Act) requirements. It compares your OpenAPI/Swagger specifications against real-world implementation to detect schema drift, resilience gaps, and security issues.

📦 Installation

pip install pandoraspec

🚀 Usage

Run the audit directly from your terminal.

Basic Scan

pandoraspec https://petstore.swagger.io/v2/swagger.json

With Options

pandoraspec https://api.example.com/spec.json --vendor "Stripe" --key "sk_live_..."

Local File

pandoraspec ./openapi.yaml

🛡️ What It Checks

Module A: The Integrity Test (Drift)

Checks if your API implementation matches your documentation.

  • Why? DORA requires you to monitor if the service effectively supports your critical functions. If the API behaves differently than documented, it's a risk.

Module B: The Resilience Test

Stress tests the API to ensure it handles invalid inputs gracefully (4xx vs 5xx).

  • Why? DORA Article 25 calls for "Digital operational resilience testing".

Module C: Security Hygiene

Checks for common security headers and configurations.

Module D: The Report

Generates a branded PDF report: "DORA ICT Third-Party Technical Risk Assessment".

📄 License

MIT

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for 0D15E0 from gravatar.com 0D15E0

Unverified details

These details have not been verified by PyPI
Meta

Release history Release notifications | RSS feed

0.3.9

0.3.7

0.3.6

0.3.4

0.3.3

0.3.2

0.3.0

0.2.11

0.2.10

0.2.8

0.2.7

0.2.5

0.2.4

0.2.3

0.2.2

0.2.1

0.2.0

0.1.4

0.1.2

This version

0.1.1

0.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

pandoraspec-0.1.1.tar.gz (11.9 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

pandoraspec-0.1.1-py3-none-any.whl (10.7 kB view details)

Uploaded Python 3

File details

Details for the file pandoraspec-0.1.1.tar.gz.

File metadata

  • Download URL: pandoraspec-0.1.1.tar.gz
  • Upload date:
  • Size: 11.9 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.14.2

File hashes

Hashes for pandoraspec-0.1.1.tar.gz
Algorithm Hash digest
SHA256 e4e7c8c68da4b89991cb5ae43c371c4b6c91d8e06ae4f41db7f5b320344d0600
MD5 6be182557738e340fae33c794c4b5dc4
BLAKE2b-256 c063013a4a52cc15532d5750e27fee6f66f2de2382c4c84198b76c2d8db9dae6

See more details on using hashes here.

File details

Details for the file pandoraspec-0.1.1-py3-none-any.whl.

File metadata

  • Download URL: pandoraspec-0.1.1-py3-none-any.whl
  • Upload date:
  • Size: 10.7 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.14.2

File hashes

Hashes for pandoraspec-0.1.1-py3-none-any.whl
Algorithm Hash digest
SHA256 fb173ddf9d96f38c2b8aea43fc71ce0ec0d7b71b7be174e14867162be2431cb3
MD5 9ad7df91e313e6f0be8338263a7c84c9
BLAKE2b-256 01bc511728d2643d59be5679e17dc935f2715dbf143efcfd56cc4f6a1d9c7473

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page