# Install pip-audit

Audits Python environments and dependency trees for known vulnerabilities. Version 2.10.0 via Homebrew; verified 2026-05-14.

## Install

```sh
sudo av install brew:pip-audit
```

Additional install commands:

### macOS

- Homebrew (100%):

```sh
brew install pip-audit
```

  Evidence: local Homebrew formula metadata

### Linux

- Nix (92%):

```sh
nix profile install nixpkgs#pip-audit
```

  Evidence: nixpkgs package indexes: pkgs/by-name/pi/pip-audit/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1

## Package Facts

- **Package key:** brew:pip-audit
- **Package manager:** Homebrew
- **Package manager URL:** <https://formulae.brew.sh/formula/pip-audit>
- **Version:** 2.10.0
- **Source summary:** Audits Python environments and dependency trees for known vulnerabilities
- **Homepage:** <https://pypi.org/project/pip-audit/>
- **Repository:** <https://github.com/pypa/pip-audit>
- **Upstream docs:** <https://github.com/pypa/pip-audit#readme>
- **License:** Apache-2.0
- **Source archive:** <https://files.pythonhosted.org/packages/bd/89/0e999b413facab81c33d118f3ac3739fd02c0622ccf7c4e82e37cebd8447/pip_audit-2.10.0.tar.gz>
- **Last updated:** 2026-05-14T10:39:09Z
- **Generated:** 2026-06-10T07:18:26+00:00

## Executables

- pip-audit (cli)
- pip-audit (alias)

## Dependencies

- certifi
- python@3.14

## Build Dependencies

- rust

## Install Behavior

- Post-install hook: not defined
- Bottle: available on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux

## Freshness

- Page generated: 2026-06-10
- Package-manager version: 2.10.0
- Package-manager updated: 2026-05-14
- Local data status: ok
- Upstream repository: https://pypi.org/project/pip-audit/
- info: Release/tag comparison is only available for GitHub repositories.

## Sicherheitshinweise

no executable entrypoint in the package index.

- **Geiger risk:** green / low
- no executable entrypoint in the package index

## Source Database Details

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** pip-audit
- **Version Scheme:** 1
- **Revision:** 6
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** stable

## Other Package-Manager Records

- Nix - pip-audit: normalized package name match | nixpkgs package indexes: pkgs/by-name/pi/pip-audit/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1


## Related Links

- [Package publisher tools](https://www.automicvault.com/de/pkg/package-publishers/) - Belongs to a package publishing or registry command family.
- [Terminal utility packages](https://www.automicvault.com/de/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Language runtime packages](https://www.automicvault.com/de/pkg/language-runtime-packages/) - Matched language runtime, compiler, or interpreter metadata.
- [Networking and protocol packages](https://www.automicvault.com/de/pkg/networking-protocol-tools/) - Matched network, protocol, or remote-service metadata.
- [python@3.14](https://www.automicvault.com/de/pkg/brew/python-3-14/) - Runtime dependency declared by Homebrew.
- [rust](https://www.automicvault.com/de/pkg/brew/rust/) - Build dependency declared by Homebrew.
- [osv-scanner](https://www.automicvault.com/de/pkg/brew/osv-scanner/) - Shares av.db curated category or tags: cli, security, supply-chain, vulnerability-scanning.
- [dependency-check](https://www.automicvault.com/de/pkg/brew/dependency-check/) - Shares av.db curated category or tags: cli, security, vulnerability-scanning.
- [snyk-cli](https://www.automicvault.com/de/pkg/brew/snyk-cli/) - Shares av.db curated category or tags: cli, dependency-scanning, security, vulnerability-scanning.
- [kics](https://www.automicvault.com/de/pkg/brew/kics/) - Shares av.db curated category or tags: cli, security, vulnerability-scanning.
- [govulncheck](https://www.automicvault.com/de/pkg/brew/govulncheck/) - Shares av.db curated category or tags: cli, security, vulnerability-scanning.
- [shodan](https://www.automicvault.com/de/pkg/brew/shodan/) - Shares av.db curated category or tags: cli, python, security.
- [pwntools](https://www.automicvault.com/de/pkg/brew/pwntools/) - Shares av.db curated category or tags: cli, python, security.
- [bandit](https://www.automicvault.com/de/pkg/brew/bandit/) - Shares av.db curated category or tags: cli, python, security.
- [safety](https://www.automicvault.com/de/pkg/brew/safety/) - Both packages touch the same language runtime or ecosystem. Shared terms: certifi, chain, cli, dependency, dependency-scanning.
- [snyk-agent-scan](https://www.automicvault.com/de/pkg/brew/snyk-agent-scan/) - Both packages touch the same language runtime or ecosystem. Shared terms: certifi, cli, python, python-3-14, scanning.
- [cargo-audit](https://www.automicvault.com/de/pkg/brew/cargo-audit/) - Security-sensitive metadata or terminology overlaps. Shared terms: audit, chain, cli, scanning, security.

## Sources

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- package version freshness
- av.db category and tag curation
- package relationship graph
- external package-manager database matches
- cross-ecosystem install command graph