Packageurl Python is used in Python projects. A purl aka. Package URL parser and builder It has no required runtime dependencies, making it lightweight to install. Check its dependency graph on PyDeps to understand the full transitive dependency tree, reverse dependents, known CVEs, and license compatibility before installing.
A purl aka. Package URL parser and builder
Packageurl Python has no required runtime dependencies. A dependency-free package keeps installs small and reduces the supply-chain surface area you need to audit.
Beyond its direct dependencies, Packageurl Python pulls in further packages through its dependency tree. PyDeps walks the entire chain from PyPI and deps.dev so you can see every transitive (nested) dependency, expand any node on demand, and understand the full set of code that ships when you install Packageurl Python.
Packageurl Python is distributed under the MIT license. Use the vulnerability panel, powered by the OSV database, to check whether Packageurl Python or anything in its dependency tree has known CVEs before you ship, and review the license of every dependency to confirm compatibility with your project.
In the interactive graph each node is a package and each edge is a version constraint. Expand a node to load its subdependencies, switch to the dependents view to see which packages rely on Packageurl Python, and download Packageurl Python together with all of its dependencies as wheels for offline or air-gapped installs.