Audit tool to help investigate Python dependencies
Project description
Valiant
The Valiant project aims to provide auditing tools that help project teams track their dependencies in terms of licensing, security, and dependability.
The goal is to help reduce the fragility of the "input side" of software development by making it easy to assess and track dependencies. Further work will also aim to check dependencies against policy documents to help integrate Valiant into developer and release workflows.
The system is written in Python 3 and targets Python codebases.
Please check out the project site for documentation.
Key resources
| Resource | Description |
|---|---|
| Codebase | GitHub project |
| Security policy | Please refer to this if you need to report a security concern |
| Project tracker | Structured to provide fulfilment of project milestones |
| Issue tracker | GitHub issues |
| Documentation | Project site |
| License | Project licence (MIT) |
| Contributing | Want to join in? |
Attribution
I have used the Poetry library to package this project and guide my implementation efforts.
The Hypermodern Python series by Claudio Jolowicz is a great resource and you'll see his guidance instilled in this codebase.
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
