Using PyRaider You can scan installed dependencies known security vulnerabilities. It uses publicly known exploits, vulnerabilities database.

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for raidersource from gravatar.com raidersource

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License
  • Author: Tilak Thimmappa
  • Tags SCA, pyraider, Source Composition Analysis, vulnerability scanner
  • Requires: Python >=3
Classifiers

Project description

PyRaider

Using PyRaider You can scan installed dependencies known security vulnerabilities. It uses publicly known exploits, vulnerabilities database. Documentation

version python version license Discord Twitter

pyraider

Usage

Table of Contents

  1. Installation
  2. Usage
  3. Scan Dependencies
  4. Scan Dependencies by Severity
  5. Report
  6. Outdated package check
  7. CI/CD
  8. Fix
  9. Autofix
  10. Release Note
  11. Help

Documentation

Install pyraider using pip or pyenv

pip install pyraider

pyenv install pyraider

To check the list of options available.

pyraider -h

Scan Vulnerabilities against the dependencies

Using PyRaider you can scan the vulnerable packages.

To run basic scan you can use pyraider go command.

It will automatically detects the installed packages and scans against it and shows the report.

pyraider go

If you want to scan you packages against requirements.txt or Pipfile.lock file.

pyraider check -f /Users/raider/project/requirements.txt

pyraider check -f /Users/raider/project/Pipfile.lock

Reports

PyRaider currently supports JSON, HTML and CSV formats.

To Export as a JSON file.

pyraider go -e json result.json

pyraider check -f /Users/raider/project/requirments.txt -e json result.json

To Export as a CSV file.

pyraider go -e csv result.csv

pyraider check -f /Users/raider/project/requirments.txt -e csv result.csv

To Export as a HTML file.

pyraider check -f go -e html result.html

pyraider check -f /Users/raider/project/requirments.txt -e html result.html

Out of Date Pacakges

Using PyRaider you can check the latest packages. Against installed packages.

pyraider validate -p django==1.11.13

pyraider validate -f /Users/raider/project/requirments.txt

pyraider validate -f /Users/raider/project/Pipfile.lock

Auto Fix

PyRaider also supports fix feature. Using this you can fix the vulnerable packages.

Note: To updating the packages might affect your application.

Fix

You can fix vulnerable package.

pyraider fix

Fix by Severity

pyraider fix -s high

Autofix

You can also autofix vulnerable packages.

pyraider autofix

Autofix by severity

pyraider autofix -s high

Update latest database

Now you can update the resource database with latest updated vulnerabilities

pyraider updatedb

Docker container

You can also run pyraider has a docker container.

Build docker container image

docker build -t pyraider .

Contact us:

Contribute

  • We welcome contributions to this project in the form of:
    • Feature Requests, Suggestions
    • Bugs
    • Help with writing tests
    • Add-on features, plugins, etc
    • Documentation

Author

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for raidersource from gravatar.com raidersource

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License
  • Author: Tilak Thimmappa
  • Tags SCA, pyraider, Source Composition Analysis, vulnerability scanner
  • Requires: Python >=3
Classifiers

Release history Release notifications | RSS feed

1.0.20

1.0.19

1.0.18

1.0.17

1.0.16

1.0.15

1.0.14

1.0.13

1.0.12

1.0.11

1.0.10

1.0.9

1.0.8

1.0.7

1.0.6

1.0.5

This version

1.0.4

1.0.3

1.0.2

1.0.1

1.0.0

0.4.8

0.4.7

0.4.6

0.4.5

0.4.4

0.4.3

0.4.2

0.4.1

0.4

0.3

0.2

0.1.2

0.1.1

0.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

pyraider-1.0.4.tar.gz (12.4 kB view details)

Uploaded Source

Built Distribution

pyraider-1.0.4-py3-none-any.whl (12.2 kB view details)

Uploaded Python 3

File details

Details for the file pyraider-1.0.4.tar.gz.

File metadata

  • Download URL: pyraider-1.0.4.tar.gz
  • Upload date:
  • Size: 12.4 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/3.2.0 pkginfo/1.5.0.1 requests/2.24.0 setuptools/50.3.0 requests-toolbelt/0.9.1 tqdm/4.50.0 CPython/3.8.5

File hashes

Hashes for pyraider-1.0.4.tar.gz
Algorithm Hash digest
SHA256 f4902ba1b2ef28dbfb790d63619dcd8a12882c13cd167cf5c3764337b39c9a97
MD5 421367a47aef0e9175e20f8f71980a30
BLAKE2b-256 9c1f64d5f150391a4826080b138f50d017772244f4980317fa8860c626b8d8d1

See more details on using hashes here.

File details

Details for the file pyraider-1.0.4-py3-none-any.whl.

File metadata

  • Download URL: pyraider-1.0.4-py3-none-any.whl
  • Upload date:
  • Size: 12.2 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/3.2.0 pkginfo/1.5.0.1 requests/2.24.0 setuptools/50.3.0 requests-toolbelt/0.9.1 tqdm/4.50.0 CPython/3.8.5

File hashes

Hashes for pyraider-1.0.4-py3-none-any.whl
Algorithm Hash digest
SHA256 529f71b7c0083183c05c88073e85b5bdd45e84d00fcd33c7ce5e46cc50b6a879
MD5 f8320d25b7cfc634f0005f955eddf001
BLAKE2b-256 46eafda3f95f2f38f9c4626788405642f118a6f0c40a9913d0230ceaf284138a

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page