pip-audit is a tool for scanning Python environments for packages with known
vulnerabilities. It uses the Python Packaging Advisory Database
(https://github.com/pypa/advisory-database) via the PyPI JSON API as a source of
vulnerability reports.
