sigstore

pypiv4.2.0

A tool for signing Python package distributions

63 versions29 deps45,410 weekly dl
sigstore/sigstore-python
70
/ 100
Health
safe to use

[email protected] is safe to use (health: 70/100)

Health breakdown0 – 100
20/25
maintenance
10/20
popularity
25/25
security
15/15
maturity
0/15
community
Vulnerabilities
0
none known

Health History

Dependency Tree

License Audit

Dependencies (29)
cryptographyidimportlib_resources~pyasn1~pydanticpyjwtpyOpenSSLrequestsrichrfc8785~rfc3161-clientsigstore-modelssigstore-rekor-typestuf~platformdirs~build;bumpsigstore[doc,lint,test];mkdocs-material[imaging];mkdocstrings-python;bandit;mypy~rufftypes-requests;types-pyOpenSSL;pytest;pytest-cov;pretend;coverage[toml];
API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/pypi/sigstore
More from pypi
typing-extensionspyyamlcffi
Browse all pypi packages →

Last updated · 2026-01-26T15:01:33.944767Z

sigstore — Health Score 70/100 | DepScope | DepScope