Ecosyste.ms: Summary
An open API service providing a high level summary for open source projects.
https://github.com/sigstore/sigstore-python
codesigning python security supply-chain
Score: 20.154165553039903
Last synced: about 3 hours ago
JSON representation
Repository metadata:
A Sigstore client for Python
- Host: GitHub
- URL: https://github.com/sigstore/sigstore-python
- Owner: sigstore
- License: other
- Created: 2022-01-13T17:29:37.000Z (over 2 years ago)
- Default Branch: main
- Last Pushed: 2024-04-15T21:40:27.000Z (29 days ago)
- Last Synced: 2024-04-16T05:05:32.757Z (29 days ago)
- Topics: codesigning, python, security, supply-chain
- Language: Python
- Homepage: https://pypi.org/p/sigstore
- Size: 1.56 MB
- Stars: 209
- Watchers: 10
- Forks: 40
- Open Issues: 31
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- Contributing: CONTRIBUTING.md
- License: LICENSE
- Codeowners: CODEOWNERS
Owner metadata:
- Name: sigstore
- Login: sigstore
- Email: [email protected]
- Kind: organization
- Description: Software Supply Chain Security
- Website: https://sigstore.dev
- Location: United States of America
- Twitter: projectsigstore
- Company:
- Icon url: https://avatars.githubusercontent.com/u/71096353?v=4
- Repositories: 50
- Last ynced at: 2023-03-03T19:42:33.042Z
- Profile URL: https://github.com/sigstore
GitHub Events
Total
- Create event: 345
- Delete event: 313
- Fork event: 31
- Issue comment event: 1012
- Issues event: 280
- Member event: 2
- Pull request event: 701
- Pull request review comment event: 599
- Pull request review event: 1037
- Push event: 988
- Release event: 38
- Watch event: 128
- Total: 5474
Last Year
- Create event: 345
- Delete event: 313
- Fork event: 31
- Issue comment event: 1012
- Issues event: 280
- Member event: 2
- Pull request event: 701
- Pull request review comment event: 599
- Pull request review event: 1037
- Push event: 988
- Release event: 38
- Watch event: 128
- Total: 5474
Committers metadata
Last synced: about 20 hours ago
Total Commits: 697
Total Committers: 33
Avg Commits per committer: 21.121
Development Distribution Score (DDS): 0.57
Commits in past year: 253
Committers in past year: 19
Avg Commits per committer in past year: 13.316
Development Distribution Score (DDS) in past year: 0.415
Name | Commits | |
---|---|---|
dependabot[bot] | 4****] | 300 |
William Woodruff | w****m@t****m | 199 |
Alex Cameron | a****c@t****h | 64 |
Dustin Ingram | d****i | 46 |
Andrew Pan | 3****n | 20 |
Jussi Kukkonen | j****n@g****m | 14 |
Jack Leightcap | j****p@t****m | 7 |
github-actions[bot] | 4****] | 5 |
Maya Costantini | 6****i | 4 |
Bob Callaway | b****y | 4 |
Javan Lacerda | j****a@g****m | 4 |
asraa | a****a@g****m | 2 |
Facundo Tuesca | f****u@t****m | 2 |
Diogo Teles Sant'Anna | d****8@g****m | 2 |
Azeem Shaikh | a****8@g****m | 2 |
laurentsimon | 6****n | 2 |
Luke Hinds | 7****s | 2 |
Jack Leightcap | 3****p | 2 |
Christian S. Perone | p****e | 2 |
Cyril Cordoui | c****i@r****m | 1 |
David A. Wheeler | d****r@d****m | 1 |
Facundo Tuesca | f****a@t****m | 1 |
Hayden B | h****n@g****m | 1 |
Hayden B | h****n@g****m | 1 |
Jack Leightcap | j****k@l****m | 1 |
Jussi Kukkonen | j****u@g****i | 1 |
Emile | 4****m | 1 |
Cameron | 5****s | 1 |
Kurt McKee | c****e@k****g | 1 |
Rob Ankeny | a****r@g****m | 1 |
and 3 more... |
Issue and Pull Request metadata
Last synced: 2 days ago
Total issues: 260
Total pull requests: 757
Average time to close issues: about 1 month
Average time to close pull requests: 3 days
Total issue authors: 32
Total pull request authors: 30
Average comments per issue: 3.27
Average comments per pull request: 1.79
Merged pull request: 665
Bot issues: 62
Bot pull requests: 365
Past year issues: 67
Past year pull requests: 300
Past year average time to close issues: about 1 month
Past year average time to close pull requests: 3 days
Past year issue authors: 14
Past year pull request authors: 18
Past year average comments per issue: 2.9
Past year average comments per pull request: 1.9
Past year merged pull request: 248
Past year bot issues: 8
Past year bot pull requests: 189
Top Issue Authors
- woodruffw (66)
- github-actions[bot] (61)
- tetsuo-cpp (30)
- jku (29)
- di (25)
- mayaCostantini (7)
- laurentsimon (7)
- sethmlarson (4)
- tnytown (3)
- haydentherapper (2)
- djhenderson (2)
- diogoteles08 (2)
- asraa (2)
- lukpueh (2)
- uranusjr (1)
Top Pull Request Authors
- dependabot[bot] (354)
- woodruffw (201)
- tetsuo-cpp (54)
- di (41)
- tnytown (20)
- jku (18)
- jleightcap (14)
- github-actions[bot] (11)
- mayaCostantini (5)
- javanlacerda (5)
- facutuesca (4)
- bobcallaway (4)
- haydentherapper (3)
- diogoteles08 (2)
- asraa (2)
Top Issue Labels
- enhancement (131)
- bug (104)
- component:cicd (72)
- component:tests (68)
- component:cli (26)
- component:verification (21)
- component:signing (14)
- component:api (12)
- refactoring (8)
- component:tuf (7)
- chore (7)
- qa (7)
- good first issue (7)
- dependencies (5)
- documentation (5)
- upstream (4)
- blocked (3)
- duplicate (2)
- question (1)
- allstar (1)
- help wanted (1)
Top Pull Request Labels
- dependencies (364)
- python (174)
- github_actions (144)
- chore (61)
- component:cicd (48)
- refactoring (31)
- component:verification (30)
- component:cli (29)
- component:api (28)
- component:signing (28)
- component:tests (20)
- documentation (18)
- qa (14)
- enhancement (13)
- component:tuf (11)
- blocked (5)
- bug (2)
- plat:windows (1)
- plat:macos (1)
- invalid (1)
- upstream (1)
Package metadata
- Total packages: 2
-
Total downloads:
- homebrew: 54 last-month
- pypi: 71,400 last-month
- Total dependent packages: 3 (may contain duplicates)
- Total dependent repositories: 9 (may contain duplicates)
- Total versions: 48
- Total maintainers: 3
pypi.org: sigstore
A tool for signing Python package distributions
- Homepage: https://pypi.org/project/sigstore/
- Documentation: https://sigstore.github.io/sigstore-python/
- Licenses: Apache Software License
- Latest release: 2.1.5 (published about 1 month ago)
- Last Synced: 2024-05-12T18:03:30.696Z (2 days ago)
- Versions: 43
- Dependent Packages: 3
- Dependent Repositories: 9
- Downloads: 71,400 Last month
-
Rankings:
- Dependent packages count: 3.273%
- Downloads: 4.448%
- Average: 4.833%
- Dependent repos count: 4.956%
- Stargazers count: 5.208%
- Forks count: 6.278%
- Maintainers (3)
formulae.brew.sh: sigstore
Codesigning tool for Python packages
- Homepage: https://github.com/sigstore/sigstore-python
- Licenses: Apache-2.0
- Latest release: 2.1.5 (published about 1 month ago)
- Last Synced: 2024-05-12T18:03:30.576Z (2 days ago)
- Versions: 5
- Dependent Packages: 0
- Dependent Repositories: 0
- Downloads: 54 Last month
-
Rankings:
- Dependent packages count: 19.58%
- Average: 47.071%
- Dependent repos count: 56.82%
- Downloads: 64.813%
Dependencies
- actions/upload-artifact v3.1.0 composite
- ./.github/actions/upload-coverage * composite
- actions/checkout ac593985615ec2ede58e132d2e21d2b1cbd6127c composite
- actions/checkout 755da8c3cf115ac066823e79a1e1788f8940201b composite
- actions/download-artifact v3.0.2 composite
- actions/setup-python d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 composite
- actions/setup-python 5ccb29d8773c3f3f653e1705f474dfaa8a06a912 composite
- re-actors/alls-green 05ac9388f0aebcb5727afa17fcccfecd6f8ec5fe composite
- actions/checkout ac593985615ec2ede58e132d2e21d2b1cbd6127c composite
- actions/setup-python d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 composite
- sigstore/sigstore-conformance 0748d63c53810e36cc3f4bbe4114301080f0d844 composite
- actions/checkout ac593985615ec2ede58e132d2e21d2b1cbd6127c composite
- actions/deploy-pages 0243b6c10d06cb8e95ed8ee471231877621202c0 composite
- actions/setup-python d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 composite
- actions/upload-pages-artifact 253fd476ed429e83b7aae64a92a75b4ceb1a17cf composite
- actions/checkout ac593985615ec2ede58e132d2e21d2b1cbd6127c composite
- actions/setup-python d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 composite
- re-actors/alls-green 05ac9388f0aebcb5727afa17fcccfecd6f8ec5fe composite
- actions/checkout ac593985615ec2ede58e132d2e21d2b1cbd6127c composite
- actions/download-artifact 9bc31d5ccc31df68ecc42ccf4149144866c47d8a composite
- actions/setup-python d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 composite
- actions/upload-artifact 0b7f8abb1508181956e8e162db84b466c27e18ce composite
- pypa/gh-action-pypi-publish c7f29f7adef1a245bd91520e94867e5c6eedddcc composite
- softprops/action-gh-release de2c0eb89ae2a093876385947365aca7b0e5f844 composite
- actions/checkout ac593985615ec2ede58e132d2e21d2b1cbd6127c composite
- actions/upload-artifact 6673cd052c4cd6fcf4b4e6e60ea986c889389535 composite
- github/codeql-action/upload-sarif 17573ee1cc1b9d061760f3a006fc4aac4f944fd5 composite
- ossf/scorecard-action e38b1902ae4f44df626f11ba0734b14fb91f8f86 composite
- actions/checkout ac593985615ec2ede58e132d2e21d2b1cbd6127c composite
- actions/setup-python d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 composite
- peter-evans/create-issue-from-file 433e51abf769039ee20ba1293a088ca19d573b7f composite
- sigstore *
- appdirs ==1.4.4
- betterproto ==2.0.0b5
- certifi ==2022.12.7
- cffi ==1.15.1
- charset-normalizer ==3.0.1
- cryptography ==39.0.1
- grpclib ==0.4.3
- h2 ==4.1.0
- hpack ==4.0.0
- hyperframe ==6.0.1
- idna ==3.4
- multidict ==6.0.4
- pycparser ==2.21
- pydantic ==1.10.5
- pyjwt ==2.6.0
- pyopenssl ==23.0.0
- python-dateutil ==2.8.2
- requests ==2.28.2
- securesystemslib ==0.26.0
- sigstore ==1.1.0
- sigstore-protobuf-specs ==0.1.0
- six ==1.16.0
- tuf ==2.1.0
- typing-extensions ==4.5.0
- urllib3 ==1.26.14
- appdirs ~= 1.4
- cryptography >= 39
- importlib_resources ~= 5.7; python_version < '3.11'
- pyOpenSSL >= 23.0.0
- pydantic *
- pyjwt >= 2.1
- requests *
- securesystemslib *
- sigstore-protobuf-specs ~= 0.1.0
- tuf ~= 2.1
- actions/checkout c85c95e3d7251135ab7dc9ce3241c5835cc595a9 composite
- actions/setup-python bd6b4b6205c4dbad673328db7b31b7fab9e241c0 composite
- peter-evans/create-pull-request 153407881ec5c347639a548ade7d8ad1d6740e38 composite
- actions/checkout c85c95e3d7251135ab7dc9ce3241c5835cc595a9 composite
- actions/setup-python bd6b4b6205c4dbad673328db7b31b7fab9e241c0 composite