Skip to main content

A command line tool for developers to check if their project dependencies have known vulnerabilities.

Project description


Pychk is a tool to help developers identify vulnerable dependencies being used in their project. It reads the project's dependencies from the specified file (which is usually requirements.txt) and checks the entries in it against entries in a database of packages with known vulnerabilities associated with them.


Pychk can be easily installed with PIP with the following command:

pip3 install pychk


Pychk reads the project dependencies from the file specified by the user (by default, Pychk will look for 'requirements.txt' in the current directory). It can also, optionally, write the output to a specified file in JSON format.

  • Running Pychk with defaults:
  • Running Pychk against a specific file:
pychk [-p/--path <path to file>]
  • Writing the output to a file:
pychk [-o/--out-file <file>]
  • Displaying help:
pychk -h/--help

Project details

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Files for pychk, version 1.0.1
Filename, size File type Python version Upload date Hashes
Filename, size pychk-1.0.1-py3-none-any.whl (6.9 kB) File type Wheel Python version py3 Upload date Hashes View
Filename, size pychk-1.0.1.tar.gz (4.5 kB) File type Source Python version None Upload date Hashes View

Supported by

AWS AWS Cloud computing Datadog Datadog Monitoring DigiCert DigiCert EV certificate Facebook / Instagram Facebook / Instagram PSF Sponsor Fastly Fastly CDN Google Google Object Storage and Download Analytics Pingdom Pingdom Monitoring Salesforce Salesforce PSF Sponsor Sentry Sentry Error logging StatusPage StatusPage Status page