Python Vulnerability Lookup

By Simon Willison's Weblog March 29, 2026 · Edited March 29, 2026

Tool: Python Vulnerability Lookup (https://tools.simonwillison.net/python-vulnerability-lookup) I learned that the OSV.dev (https://osv.dev/) open source vulnerability database has an open CORS

Tool: Python Vulnerability Lookup (https://tools.simonwillison.net/python-vulnerability-lookup)

I learned that the OSV.dev (https://osv.dev/) open source vulnerability database has an open CORS JSON API (https://google.github.io/osv.dev/api/) so I had Claude Code build this HTML tool (https://simonwillison.net/2025/Dec/10/html-tools/) for pasting in a pyproject.toml or requirements.txt file (or name of a GitHub repo containing those) and seeing a list of all reported vulnerabilities from that API.


    Tags: tools (https://simonwillison.net/tags/tools), python (https://simonwillison.net/tags/python), supply-chain (https://simonwillison.net/tags/supply-chain), vibe-coding (https://simonwillison.net/tags/vibe-coding), security (https://simonwillison.net/tags/security)

Reference: https://simonwillison.net/2026/Mar/29/python-vulnerability-lookup/#atom-everything

Write a comment

No comments yet.