Package Health Score

60 / 100

security
No known security issues
popularity
Recognized
maintenance
Inactive
community
Sustainable

Popularity

Recognized

GitHub Stars: 236
Forks: 133
Contributors: 20

Direct Usage Popularity

Based on project statistics from the GitHub repository for the PyPI package stix, we found that it has been starred 236 times.

Security

No known security issues

Security and license risk for latest version

Release Date: Nov 16, 2020
Direct Vulnerabilities: 0
C
0
H
0
M
0
L
Indirect Vulnerabilities: 0
C
0
H
0
M
0
L
License Risk: 0
H
0
M
0
L

All security vulnerabilities belong to production dependencies of direct and indirect packages.

License

BSD-3-Clause

Security Policy

We found a way for you to contribute to the project! Looks like stix is missing a security policy.

You can connect your project's repository to Snyk to stay up to date on security alerts and receive automatic fix pull requests.

Keep your project free of vulnerabilities with Snyk

Maintenance

Inactive

Commit Frequency

No Recent Commits

Open Issues: 25
Open PR: 0
Last Release: 3 years ago
Last Commit: 2 years ago

Further analysis of the maintenance status of stix based on released PyPI versions cadence, the repository activity, and other data points determined that its maintenance is Inactive.

An important project maintenance signal to consider for stix is that it hasn't seen any new versions released to PyPI in the past 12 months, and could be considered as a discontinued project, or that which receives low attention from its maintainers.

As a healthy sign for on-going project maintenance, we found that the GitHub repository had at least 1 pull request or issue interacted with by the community.

Community

Sustainable

Readme: Yes
Contributing.md: No
Code of Conduct: No
Contributors: 20
Funding: No

With more than 10 contributors for the stix repository, this is possibly a sign for a growing and inviting community.

We found a way for you to contribute to the project! Looks like stix is missing a Code of Conduct.

Embed Package Health Score Badge

Keep your project healthy

Check your requirements.txt

Ensure all the packages you're using are healthy and well-maintained

Snyk Vulnerability Scanner

Get health score & security insights directly in your IDE

Package

Python Versions Compatibility: ==2.7.*, ==3.4.*, ==3.5.*, ==3.6.*, ==3.7.*, ==3.8.*

Age: 11 years
Latest Release: 3 years ago
Dependencies: 4 Direct / 7 Total
Versions: 53
Maintainers: 3
Wheels: OS Independent

Readme

python-stix

A python library for parsing, manipulating, and generating Structured Threat Information eXpression (STIX™) v1.2.0 content.

Source

Documentation

Information

Download

Installation

The python-stix library is hosted on PyPI and the most recent stable version can be installed with pip:

$ pip install stix

The python-stix library can also be installed via the distutils setup.py script included at the root directory:

$ python setup.py install

Dependencies

The python-stix library depends on the presence of certain packages/libraries to function. Please refer to their installation documentation for installation instructions.

Installation on Ubuntu 14.04 (and older)

$ sudo apt-get install python-dev python-pip libxml2-dev libxslt-dev zlib1g-dev
$ sudo pip install stix

Installation on Windows

Download the Lxml wheel for your version of Python from , then install it via "pip install <filename>.whl". For example, to install it on 64-bit Windows running Python 2.7:

$ pip install lxml-3.6.1-cp27-cp27m-win_amd64.whl
$ pip install stix

Versioning

Releases of the python-stix library will be given version numbers of the form major.minor.update.revision, where major, minor, and update correspond to the STIX version being supported. The revision number is used to indicate new versions of the python-stix library itself.

Layout

The python-stix package layout is as follows:

stix/ : root level package.
examples/ : example python scripts that leverage the python-stix library.
stix/utils/ : utility classes and modules used internally by the python-stix library.
stix/bindings/ : generateDS generated xml-to-python bindings (leveraged for parsing and output of STIX XML content).
stix/campaign/ : APIs for STIX Campaign constructs.
stix/coa/ : APIs for STIX Course Of Action constructs.
stix/core/ : APIs for core STIX constructs (e.g., STIX Header, STIX Package).
stix/common/ : APIs for common STIX constructs (e.g., Structured Text, Information Source).
stix/exploit_target/ : APIs for STIX Exploit Target constructs.
stix/incident/ : APIs for common Incident constructs.
stix/indicator/ : APIs for STIX Indicator constructs.
stix/extensions/ : APIs for STIX extensions (e.g., CIQ Identity).
stix/report/: APIs for STIX Report constructs.
stix/threat_actor/ : APIs for STIX Threat Actor constructs.
stix/ttp/ : APIs for STIX TTP constructs.

Please refer to examples for concrete examples of how to interact with the python-stix library.

stix dependencies

cybox lxml mixbox python-dateutil

FAQs

What is stix?

An API for parsing and generating STIX content. Visit Snyk Advisor to see a full health score report for stix, including popularity, security, maintenance & community analysis.

Is stix popular?

The python package stix receives a total of 15,220 weekly downloads. As such, stix popularity was classified as a recognized. Visit the popularity section on Snyk Advisor to see the full health analysis.

Is stix well maintained?

We found indications that stix is an Inactive project. See the full package health analysis to learn more about the package maintenance status.

Is stix safe to use?

The python package stix was scanned for known vulnerabilities and missing license, and no issues were found. Thus the package was deemed as safe to use. See the full health analysis review.

Last updated on 23 April-2024, at 09:02 (UTC).

Build a secure application checklist

Select a recommended open source package

Minimize your risk by selecting secure & well maintained open source packages

DONE

Scan your app for vulnerabilities

Scan your application to find vulnerabilities in your: source code, open source dependencies, containers and configuration files

SCAN NOW

Fix identified vulnerabilities

Easily fix your code by leveraging automatically generated PRs

AUTO FIX

Monitor for new issues

New vulnerabilities are discovered every day. Get notified if your application is affected

MONITOR APP

stix

An API for parsing and generating STIX content. For more information about how to use this package see README

Ensure you're using the healthiest python packages

Package Health Score

Popularity

Direct Usage Popularity

Security

Security and license risk for latest version

Maintenance

Commit Frequency

Community

Embed Package Health Score Badge

Keep your project healthy

Check your requirements.txt

Snyk Vulnerability Scanner

Package

Readme

python-stix

Installation

Dependencies

Installation on Ubuntu 14.04 (and older)

Installation on Windows

Versioning

Layout

stix dependencies

FAQs

What is stix?

Is stix popular?

Is stix well maintained?

Is stix safe to use?

Build a secure application checklist

Select a recommended open source package

Scan your app for vulnerabilities

Fix identified vulnerabilities

Monitor for new issues

Package Health Score

Direct Usage Popularity

Security and license risk for latest version

Commit Frequency

Embed Package Health Score Badge

Keep your project healthy

Check your requirements.txt

Snyk Vulnerability Scanner

Readme

python-stix

Installation

Dependencies

Installation on Ubuntu 14.04 (and older)

Installation on Windows

Versioning

Layout

stix dependencies

FAQs

What is stix?

Is stix popular?

Is stix well maintained?

Is stix safe to use?

Build a secure application checklist

Select a recommended open source package

Scan your app for vulnerabilities

Source Code

Open Source

Container

Config

Fix identified vulnerabilities

Monitor for new issues