Scan your dependencies for weaponized vulnerabilities. Powered by ThreatPulse x402.

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for vivek-aws from gravatar.com vivek-aws

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT
  • Author: WaltSoft
  • Tags cve , devsecops , exploit , sbom , security , vulnerability
  • Requires: Python >=3.9
Classifiers
Report project as malware

Project description

ThreatPulse CLI

Scan your dependencies for weaponized vulnerabilities. Powered by threatpulse.waltsoft.net.

Install

pip install threatpulse

Usage

# Scan a lockfile
threatpulse scan --file package-lock.json

# Fail CI if urgency >= 80
threatpulse scan --threshold 80

# JSON output for piping
threatpulse scan --format json | jq '.[] | select(.urgency_score > 70)'

# SARIF for GitHub Code Scanning
threatpulse scan --format sarif > results.sarif

What makes this different

Unlike Trivy/Snyk/Inspector, ThreatPulse tells you if a CVE is actively weaponized:

🔴 CVE-2024-45257   HIGH       weaponized   95   metasploit:exploit/unix/webapp/byob_unauth_rce
🟡 CVE-2025-1234    MEDIUM     poc          45   github.com/user/CVE-2025-1234
🟢 CVE-2025-5678    LOW        none         12   no known exploit

Supported lockfiles

  • package-lock.json (npm)
  • requirements.txt (pip)
  • Cargo.lock (Rust)
  • go.sum (Go)
  • Gemfile.lock (Ruby)

GitHub Action

- uses: awsdataarchitect/threatpulse-action@v1
  with:
    fail-on-urgency: 80

Links

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for vivek-aws from gravatar.com vivek-aws

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT
  • Author: WaltSoft
  • Tags cve , devsecops , exploit , sbom , security , vulnerability
  • Requires: Python >=3.9
Classifiers

Release history Release notifications | RSS feed

0.2.2

0.2.1

0.2.0

This version

0.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

threatpulse-0.1.0.tar.gz (3.6 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

threatpulse-0.1.0-py3-none-any.whl (4.6 kB view details)

Uploaded Python 3

File details

Details for the file threatpulse-0.1.0.tar.gz.

File metadata

  • Download URL: threatpulse-0.1.0.tar.gz
  • Upload date:
  • Size: 3.6 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.11.4

File hashes

Hashes for threatpulse-0.1.0.tar.gz
Algorithm Hash digest
SHA256 c1bffcde27ab05722626ea7285a46dc263ec46f283d9f000fdd0ac03e6910cca
MD5 e09d5225d8425632f28337447ca4c870
BLAKE2b-256 74e9310c4e1f2c6d9b2ffe46a10ec404f0cbefec0ccfe12ceafe92554067c16d

See more details on using hashes here.

File details

Details for the file threatpulse-0.1.0-py3-none-any.whl.

File metadata

  • Download URL: threatpulse-0.1.0-py3-none-any.whl
  • Upload date:
  • Size: 4.6 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.11.4

File hashes

Hashes for threatpulse-0.1.0-py3-none-any.whl
Algorithm Hash digest
SHA256 9f63477a91b825886aa1df4b7f7d39edb7f5fc2c77a83887b28f04b40496a858
MD5 0a87a29e8215ef21ea8e3573d3ffe36e
BLAKE2b-256 c5dbd12766053a8a9b9ea6768eff6cbd1170f70d2a1ebc74854e5f052fb65ba3

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page