PyPI - depsdev - Versions diffs - 0.0.1__py3-none-any.whl → 0.0.2__py3-none-any.whl - Mend

depsdev 0.0.1py3-none-any.whl → 0.0.2py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

depsdev/__main__.py +123 -7
depsdev/_version.py +2 -2
depsdev/v3.py +192 -0
depsdev/v3alpha.py +307 -0
{depsdev-0.0.1.dist-info → depsdev-0.0.2.dist-info}/METADATA +17 -3
depsdev-0.0.2.dist-info/RECORD +11 -0
depsdev-0.0.1.dist-info/RECORD +0 -9
{depsdev-0.0.1.dist-info → depsdev-0.0.2.dist-info}/WHEEL +0 -0
{depsdev-0.0.1.dist-info → depsdev-0.0.2.dist-info}/entry_points.txt +0 -0
{depsdev-0.0.1.dist-info → depsdev-0.0.2.dist-info}/licenses/LICENSE.txt +0 -0

depsdev/__main__.py CHANGED Viewed

@@ -1,14 +1,130 @@
 from __future__ import annotations
+import os
+from textwrap import dedent
+from typing import TYPE_CHECKING
-def main(argv: list[str] | None = None) -> int:
-    import argparse
+if TYPE_CHECKING:
+    from collections.abc import Callable
-    parser = argparse.ArgumentParser()
-    args = parser.parse_args(argv)
-    print(f"Arguments: {vars(args)=}")
-    return 0
+    from typing_extensions import ParamSpec
+    from typing_extensions import TypeVar
+    P = ParamSpec("P")
+    R = TypeVar("R")
+def to_sync() -> Callable[[Callable[P, R]], Callable[P, R]]:
+    """
+    Decorator to convert async methods to sync methods.
+    """
+    def decorator(func: Callable[P, R]) -> Callable[P, R]:
+        import functools
+        @functools.wraps(func)
+        def wrapper(*args: P.args, **kwargs: P.kwargs) -> R:
+            try:
+                import asyncio
+                from rich import print_json
+                print_json(data=asyncio.run(func(*args, **kwargs)))  # type: ignore[arg-type]
+            except:  # noqa: E722
+                raise SystemExit(1) from None
+            raise SystemExit(0)
+        return wrapper
+    return decorator
+def main() -> None:
+    """
+    Main entry point for the CLI.
+    """
+    import logging
+    logging.basicConfig(
+        level=logging.ERROR,
+        format="[%(asctime)s] [%(levelname)-7s] [%(name)s] %(message)s",
+    )
+    logging.getLogger("httpx").setLevel(logging.WARNING)
+    logger = logging.getLogger("depsdev")
+    try:
+        import typer
+    except ImportError:
+        msg = (
+            "The 'cli' optional dependency is not installed. "
+            "Please install it with 'pip install depsdev[cli]'."
+        )
+        logger.error(msg)  # noqa: TRY400
+        raise SystemExit(1) from None
+    alpha = os.environ.get("DEPSDEV_V3_ALPHA", "false").lower() in ("true", "1", "yes")
+    app = typer.Typer(
+        name="depsdev",
+        no_args_is_help=True,
+        rich_markup_mode="rich",
+        help=dedent(
+            """\
+            A CLI tool to interact with the https://docs.deps.dev/api/
+            ## Package names
+            In general, the API refers to packages by the names used within their ecosystem, including details such as capitalization.
+            Exceptions:
+            - Maven names are of the form <group ID>:<artifact ID>, for example org.apache.logging.log4j:log4j-core.
+            - PyPI names are normalized as per PEP 503.
+            - NuGet names are normalized through lowercasing according to the Package Content API request parameter specification. Versions are normalized according to NuGet 3.4+ rules.
+            ## Purl parameters
+            Some methods accept purls, or package URLs, which have their own rules about how components should be encoded. https://github.com/package-url/purl-spec
+            For example, the npm package @colors/colors has the purl pkg:npm/@colors/colors.
+            To enable the alpha features, set the environment variable DEPSDEV_V3_ALPHA to true.
+            """,  # noqa: E501
+        ),
+    )
+    from depsdev.v3 import DepsDevClientV3
+    from depsdev.v3alpha import DepsDevClientV3Alpha
+    client_v3_alpha = DepsDevClientV3Alpha()
+    client_v3 = DepsDevClientV3()
+    client = client_v3 if not alpha else client_v3_alpha
+    app.command(rich_help_panel="v3")(to_sync()(client.get_package))
+    app.command(rich_help_panel="v3")(to_sync()(client.get_version))
+    app.command(rich_help_panel="v3")(to_sync()(client.get_requirements))
+    app.command(rich_help_panel="v3")(to_sync()(client.get_dependencies))
+    app.command(rich_help_panel="v3")(to_sync()(client.get_project))
+    app.command(rich_help_panel="v3")(to_sync()(client.get_project_package_versions))
+    app.command(rich_help_panel="v3")(to_sync()(client.get_advisory))
+    app.command(rich_help_panel="v3")(to_sync()(client.query))
+    if alpha:
+        # app.command(rich_help_panel="v3alpha")(to_sync()(client_v3_alpha.get_version_batch))
+        app.command(rich_help_panel="v3alpha")(to_sync()(client_v3_alpha.get_dependents))
+        app.command(rich_help_panel="v3alpha")(to_sync()(client_v3_alpha.get_capabilities))
+        app.command(rich_help_panel="v3alpha")(to_sync()(client_v3_alpha.get_project_batch))
+        app.command(rich_help_panel="v3alpha")(
+            to_sync()(client_v3_alpha.get_similarly_named_packages)
+        )
+        app.command(rich_help_panel="v3alpha")(to_sync()(client_v3_alpha.purl_lookup))
+        app.command(rich_help_panel="v3alpha")(to_sync()(client_v3_alpha.purl_lookup_batch))
+        app.command(rich_help_panel="v3alpha")(to_sync()(client_v3_alpha.query_container_images))
+    return app()
 if __name__ == "__main__":
-    raise SystemExit(main())
+    main()

depsdev/_version.py CHANGED Viewed

@@ -17,5 +17,5 @@ __version__: str
 __version_tuple__: VERSION_TUPLE
 version_tuple: VERSION_TUPLE
-__version__ = version = '0.0.1'
-__version_tuple__ = version_tuple = (0, 0, 1)
+__version__ = version = '0.0.2'
+__version_tuple__ = version_tuple = (0, 0, 2)

depsdev/v3.py ADDED Viewed

@@ -0,0 +1,192 @@
+from __future__ import annotations
+import logging
+from dataclasses import dataclass
+from dataclasses import field
+from enum import Enum
+from typing import TYPE_CHECKING
+from typing import Optional
+from urllib.parse import quote
+import httpx
+if TYPE_CHECKING:
+    from httpx._types import QueryParamTypes
+    from typing_extensions import Literal
+logger = logging.getLogger(__name__)
+Incomplete = object
+class HashType(str, Enum):
+    MD5 = "MD5"
+    SHA1 = "SHA1"
+    SHA256 = "SHA256"
+    SHA512 = "SHA512"
+class System(str, Enum):
+    GO = "GO"
+    RUBYGEMS = "RUBYGEMS"
+    NPM = "NPM"
+    CARGO = "CARGO"
+    MAVEN = "MAVEN"
+    PYPI = "PYPI"
+    NUGET = "NUGET"
+def url_escape(string: str) -> str:
+    return quote(string, safe="")
+@dataclass
+class DepsDevClientV3:
+    client: httpx.AsyncClient = field(init=False)
+    timeout: float = 5.0
+    base_url: str = "https://api.deps.dev"
+    def __post_init__(self) -> None:
+        self.client = httpx.AsyncClient(base_url=self.base_url, timeout=self.timeout)
+    async def _requests(
+        self,
+        url: str = "",
+        method: Literal["GET", "POST"] = "GET",
+        params: QueryParamTypes | None = None,
+        json: object | None = None,
+    ) -> Incomplete:
+        response = await self.client.request(method=method, url=url, params=params, json=json)
+        if not response.is_success:
+            logger.error(
+                "Request failed with status code %s: %s", response.status_code, response.text
+            )
+            response.raise_for_status()
+        return response.json()
+    async def get_package(self, system: System, name: str) -> Incomplete:
+        """
+        GetPackage returns information about a package, including a list of its available versions, with the default version marked if known.
+        GET /v3/systems/{packageKey.system}/packages/{packageKey.name}
+        """  # noqa: E501
+        return await self._requests(
+            method="GET", url=f"/v3/systems/{system}/packages/{url_escape(name)}"
+        )
+    async def get_version(self, system: System, name: str, version: str) -> Incomplete:
+        """
+        GetVersion returns information about a specific package version, including its licenses and any security advisories known to affect it.
+        GET /v3/systems/{versionKey.system}/packages/{versionKey.name}/versions/{versionKey.version}
+        """  # noqa: E501
+        return await self._requests(
+            method="GET",
+            url=f"/v3/systems/{system}/packages/{url_escape(name)}/versions/{url_escape(version)}",
+        )
+    async def get_requirements(self, system: System, name: str, version: str) -> Incomplete:
+        """
+        GetRequirements returns the requirements for a given version in a system-specific format. Requirements are currently available for Maven, npm, NuGet and RubyGems.
+        Requirements are the dependency constraints specified by the version.
+        GET /v3/systems/{versionKey.system}/packages/{versionKey.name}/versions/{versionKey.version}:requirements
+        """  # noqa: E501
+        return await self._requests(
+            method="GET",
+            url=f"/v3/systems/{system}/packages/{url_escape(name)}/versions/{url_escape(version)}:requirements",
+        )
+    async def get_dependencies(self, system: System, name: str, version: str) -> Incomplete:
+        """
+        GetDependencies returns a resolved dependency graph for the given package version. Dependencies are currently available for Go, npm, Cargo, Maven and PyPI.
+        Dependencies are the resolution of the requirements (dependency constraints) specified by a version.
+        The dependency graph should be similar to one produced by installing the package version on a generic 64-bit Linux system, with no other dependencies present. The precise meaning of this varies from system to system.
+        GET /v3/systems/{versionKey.system}/packages/{versionKey.name}/versions/{versionKey.version}:dependencies
+        """  # noqa: E501
+        return await self._requests(
+            method="GET",
+            url=f"/v3/systems/{system}/packages/{url_escape(name)}/versions/{url_escape(version)}:dependencies",
+        )
+    async def get_project(self, project_id: str) -> Incomplete:
+        """
+        GetProject returns information about projects hosted by GitHub, GitLab, or BitBucket, when known to us.
+        GET /v3/projects/{projectKey.id}
+        """  # noqa: E501
+        return await self._requests(method="GET", url=f"/v3/projects/{url_escape(project_id)}")
+    async def get_project_package_versions(self, project_id: str) -> Incomplete:
+        """
+        GetProjectPackageVersions returns known mappings between the requested project and package versions. At most 1500 package versions are returned. Mappings which were derived from attestations are served first.
+        GET /v3/projects/{projectKey.id}:packageversions
+        """  # noqa: E501
+        return await self._requests(
+            method="GET", url=f"/v3/projects/{url_escape(project_id)}:packageversions"
+        )
+    async def get_advisory(self, advisory_id: str) -> Incomplete:
+        """
+        GetAdvisory returns information about security advisories hosted by OSV.
+        GET /v3/advisories/{advisoryKey.id}
+        """
+        return await self._requests(method="GET", url=f"/v3/advisories/{url_escape(advisory_id)}")
+    async def query(
+        self,
+        hash_type: Optional[HashType] = None,  # noqa: UP045
+        hash_value: Optional[str] = None,  # noqa: UP045
+        system: Optional[System] = None,  # noqa: UP045
+        name: Optional[str] = None,  # noqa: UP045
+        version: Optional[str] = None,  # noqa: UP045
+    ) -> Incomplete:
+        """
+        Query returns information about multiple package versions, which can be specified by name, content hash, or both. If a hash was specified in the request, it returns the artifacts that matched the hash.
+        Querying by content hash is currently supported for npm, Cargo, Maven, NuGet, PyPI and RubyGems. It is typical for hash queries to return many results; hashes are matched against multiple release artifacts (such as JAR files) that comprise package versions, and any given artifact may appear in several package versions.
+        GET /v3/query
+        """  # noqa: E501
+        params = {
+            "hash.type": hash_type.value if hash_type else None,
+            "hash.value": hash_value,
+            "versionKey.system": system.value if system else None,
+            "versionKey.name": name,
+            "versionKey.version": version,
+        }
+        params = {k: v for k, v in params.items() if v is not None}  # Filter out None values
+        return await self._requests(method="GET", url="/v3/query", params=params)  # type: ignore[arg-type,unused-ignore]
+if __name__ == "__main__":
+    import asyncio
+    async def main() -> None:
+        client = DepsDevClientV3()
+        system = System.NPM
+        name = "@colors/colors"
+        version = "1.5.0"
+        project_id = "github.com/facebook/react"
+        advisory_id = "GHSA-2qrg-x229-3v8q"
+        print(await client.get_package(system, name))
+        print(await client.get_version(system, name, version))
+        print(await client.get_requirements(system, name, version))
+        print(await client.get_dependencies(system, name, version))
+        print(await client.get_project(project_id))
+        print(await client.get_project_package_versions(project_id))
+        print(await client.get_advisory(advisory_id))
+        print(
+            await client.query(
+                system=System.NPM,
+                name="react",
+                version="18.2.0",
+            )
+        )
+    asyncio.run(main())

depsdev/v3alpha.py ADDED Viewed

@@ -0,0 +1,307 @@
+from __future__ import annotations
+from typing import TYPE_CHECKING
+from typing import Optional
+from typing import Union
+from depsdev.v3 import DepsDevClientV3
+from depsdev.v3 import HashType
+from depsdev.v3 import Incomplete
+from depsdev.v3 import System
+from depsdev.v3 import url_escape
+if TYPE_CHECKING:
+    from typing_extensions import Literal
+    from typing_extensions import TypedDict
+    class PurlDict(TypedDict):
+        system: System | SystemLiteral
+        name: str
+        version: str
+    SystemLiteral = Literal[
+        "GO",
+        "RUBYGEMS",
+        "NPM",
+        "CARGO",
+        "MAVEN",
+        "PYPI",
+        "NUGET",
+    ]
+PUrlStr = str
+PUrlWithVersionStr = str
+class DepsDevClientV3Alpha(DepsDevClientV3):
+    async def get_package(self, system: System, name: str) -> Incomplete:
+        """
+        GetPackage returns information about a package, including a list of its available versions, with the default version marked if known.
+        GET /v3alpha/systems/{packageKey.system}/packages/{packageKey.name}
+        """  # noqa: E501
+        return await self._requests(
+            method="GET", url=f"/v3alpha/systems/{system}/packages/{url_escape(name)}"
+        )
+    async def get_version(self, system: System, name: str, version: str) -> Incomplete:
+        """
+        GetVersion returns information about a specific package version, including its licenses and any security advisories known to affect it.
+        GET /v3alpha/systems/{versionKey.system}/packages/{versionKey.name}/versions/{versionKey.version}
+        """  # noqa: E501
+        return await self._requests(
+            method="GET",
+            url=f"/v3alpha/systems/{system}/packages/{url_escape(name)}/versions/{url_escape(version)}",
+        )
+    async def get_version_batch(
+        self,
+        requests: list[PurlDict],
+        page_token: Optional[str] = None,  # noqa: UP045
+    ) -> Incomplete:
+        """
+        GetVersionBatch performs GetVersion requests for a batch of versions. Large result sets may be paginated.
+        POST /v3alpha/versionbatch
+        """  # noqa: E501
+        payload = {
+            "requests": [{"versionKey": x} for x in requests],
+            "pageToken": page_token,
+        }
+        return await self._requests(method="POST", url="/v3alpha/versionbatch", json=payload)
+    async def get_requirements(self, system: System, name: str, version: str) -> Incomplete:
+        """
+        GetRequirements returns the requirements for a given version in a system-specific format. Requirements are currently available for Maven, npm, NuGet, and RubyGems.
+        Requirements are the dependency constraints specified by the version.
+        GET /v3alpha/systems/{versionKey.system}/packages/{versionKey.name}/versions/{versionKey.version}:requirements
+        """  # noqa: E501
+        return await self._requests(
+            method="GET",
+            url=f"/v3alpha/systems/{system}/packages/{url_escape(name)}/versions/{url_escape(version)}:requirements",
+        )
+    async def get_dependencies(self, system: System, name: str, version: str) -> Incomplete:
+        """
+        GetDependencies returns a resolved dependency graph for the given package version. Dependencies are currently available for Go, npm, Cargo, Maven and PyPI.
+        Dependencies are the resolution of the requirements (dependency constraints) specified by a version.
+        The dependency graph should be similar to one produced by installing the package version on a generic 64-bit Linux system, with no other dependencies present. The precise meaning of this varies from system to system.
+        GET /v3alpha/systems/{versionKey.system}/packages/{versionKey.name}/versions/{versionKey.version}:dependencies
+        """  # noqa: E501
+        return await self._requests(
+            method="GET",
+            url=f"/v3alpha/systems/{system}/packages/{url_escape(name)}/versions/{url_escape(version)}:dependencies",
+        )
+    async def get_dependents(self, system: System, name: str, version: str) -> Incomplete:
+        """
+        GetDependents returns information about the number of distinct packages known to depend on the given package version. Dependent counts are currently available for Go, npm, Cargo, Maven and PyPI.
+        Dependent counts are derived from the dependency graphs computed by deps.dev, which means that only public dependents are counted. As such, dependent counts should be treated as indicative of relative popularity rather than precisely accurate.
+        GET /v3alpha/systems/{versionKey.system}/packages/{versionKey.name}/versions/{versionKey.version}:dependents
+        """  # noqa: E501
+        return await self._requests(
+            method="GET",
+            url=f"/v3alpha/systems/{system}/packages/{url_escape(name)}/versions/{url_escape(version)}:dependents",
+        )
+    async def get_capabilities(self, system: System, name: str, version: str) -> Incomplete:
+        """
+        GetCapabilityRequest returns counts for direct and indirect calls to Capslock capabilities for a given package version. Currently only available for Go.
+        GET /v3alpha/systems/{versionKey.system}/packages/{versionKey.name}/versions/{versionKey.version}:capabilities
+        """  # noqa: E501
+        return await self._requests(
+            method="GET",
+            url=f"/v3alpha/systems/{system}/packages/{url_escape(name)}/versions/{url_escape(version)}:capabilities",
+        )
+    async def get_project(self, project_id: str) -> Incomplete:
+        """
+        GetProject returns information about projects hosted by GitHub, GitLab, or BitBucket, when known to us.
+        GET /v3alpha/projects/{projectKey.id}
+        """  # noqa: E501
+        return await self._requests(method="GET", url=f"/v3alpha/projects/{url_escape(project_id)}")
+    async def get_project_batch(
+        self,
+        project_ids: list[str],
+        page_token: Optional[str] = None,  # noqa: UP045
+    ) -> Incomplete:
+        """
+        GetProjectBatch performs GetProjectBatch requests for a batch of projects. Large result sets may be paginated.
+        POST /v3alpha/projectbatch
+        """  # noqa: E501
+        payload = {
+            "requests": [{"projectKey": {"id": x}} for x in project_ids],
+            "pageToken": page_token,
+        }
+        return await self._requests(method="POST", url="/v3alpha/projectbatch", json=payload)
+    async def get_project_package_versions(self, project_id: str) -> Incomplete:
+        """
+        GetProjectPackageVersions returns known mappings between the requested project and package versions. At most 1500 package versions are returned. Mappings which were derived from attestations are served first.
+        GET /v3alpha/projects/{projectKey.id}:packageversions
+        """  # noqa: E501
+        return await self._requests(
+            method="GET", url=f"/v3alpha/projects/{url_escape(project_id)}:packageversions"
+        )
+    async def get_advisory(self, advisory_id: str) -> Incomplete:
+        """
+        GetAdvisory returns information about security advisories hosted by OSV.
+        GET /v3alpha/advisories/{advisoryKey.id}
+        """
+        return await self._requests(
+            method="GET", url=f"/v3alpha/advisories/{url_escape(advisory_id)}"
+        )
+    async def get_similarly_named_packages(self, system: System, name: str) -> Incomplete:
+        """
+        GetSimilarlyNamedPackages returns packages with names that are similar to the requested package. This similarity relation is computed by deps.dev.
+        GET /v3alpha/systems/{packageKey.system}/packages/{packageKey.name}:similarlyNamedPackages
+        """  # noqa: E501
+        return await self._requests(
+            method="GET",
+            url=f"/v3alpha/systems/{system}/packages/{url_escape(name)}:similarlyNamedPackages",
+        )
+    async def query(
+        self,
+        hash_type: Optional[HashType] = None,  # noqa: UP045
+        hash_value: Optional[str] = None,  # noqa: UP045
+        system: Optional[System] = None,  # noqa: UP045
+        name: Optional[str] = None,  # noqa: UP045
+        version: Optional[str] = None,  # noqa: UP045
+    ) -> Incomplete:
+        """
+        Query returns information about multiple package versions, which can be specified by name, content hash, or both. If a hash was specified in the request, it returns the artifacts that matched the hash.
+        Querying by content hash is currently supported for npm, Cargo, Maven, NuGet, PyPI and RubyGems. It is typical for hash queries to return many results; hashes are matched against multiple release artifacts (such as JAR files) that comprise package versions, and any given artifact may appear in several package versions.
+        GET /v3alpha/query
+        """  # noqa: E501
+        params = {
+            "hash.type": hash_type.value if hash_type else None,
+            "hash.value": hash_value,
+            "versionKey.system": system.value if system else None,
+            "versionKey.name": name,
+            "versionKey.version": version,
+        }
+        params = {k: v for k, v in params.items() if v is not None}  # Filter out None values
+        return await self._requests(method="GET", url="/v3alpha/query", params=params)  # type: ignore[arg-type,unused-ignore]
+    async def purl_lookup(self, purl: Union[PUrlStr, PUrlWithVersionStr]) -> Incomplete:  # noqa: UP007
+        """
+        PurlLookup searches for a package or package version specified via purl, and returns the corresponding result from GetPackage or GetVersion as appropriate.
+        For a package lookup, the purl should be in the form pkg:type/namespace/name for a namespaced package name, or pkg:type/name for a non-namespaced package name.
+        For a package version lookup, the purl should be in the form pkg:type/namespace/name@version, or pkg:type/name@version.
+        Extra fields in the purl must be empty, otherwise the request will fail. In particular, there must be no subpath or qualifiers.
+        Supported values for type are cargo, gem, golang, maven, npm, nuget, and pypi. Further details on types, and how to form purls of each type, can be found in the purl spec.
+        Special characters in purls must be percent-encoded. This is described in detail by the purl spec.
+        GET /v3alpha/purl/{purl}
+        """  # noqa: E501
+        return await self._requests(method="GET", url=f"/v3alpha/purl/{url_escape(purl)}")
+    async def purl_lookup_batch(
+        self,
+        purls: list[PUrlWithVersionStr],
+        page_token: Optional[str] = None,  # noqa: UP045
+    ) -> Incomplete:
+        """
+        PurlLookupBatch performs PurlLookup requests for a batch of purls. This endpoint only supports version lookups. Purls in requests must include a version field.
+        Supported purl forms are pkg:type/namespace/name@version for a namespaced package name, or pkg:type/name@version for a non-namespaced package name.
+        Extra fields in the purl must be empty, otherwise the request will fail. In particular, there must be no subpath or qualifiers.
+        Large result sets may be paginated.
+        POST /v3alpha/purlbatch
+        """  # noqa: E501
+        payload = {"requests": [{"purl": x} for x in purls], "pageToken": page_token}
+        return await self._requests(method="POST", url="/v3alpha/purlbatch", json=payload)
+    async def query_container_images(self, chain_id: str) -> Incomplete:
+        """
+        QueryContainerImages searches for container image repositories on DockerHub that match the requested OCI Chain ID. At most 1000 image repositories are returned.
+        An image repository is identifier (eg. 'tensorflow') that refers to a collection of images.
+        An OCI Chain ID is a hashed encoding of an ordered sequence of OCI layers. For further details see the OCI Chain ID spec.
+        GET /v3alpha/querycontainerimages/{chainId}
+        """  # noqa: E501
+        return await self._requests(
+            method="GET", url=f"/v3alpha/querycontainerimages/{url_escape(chain_id)}"
+        )
+if __name__ == "__main__":
+    import asyncio
+    async def main() -> None:
+        client = DepsDevClientV3Alpha()
+        system = System.NPM
+        name = "@colors/colors"
+        version = "1.5.0"
+        project_id = "github.com/facebook/react"
+        advisory_id = "GHSA-2qrg-x229-3v8q"
+        print(await client.get_package(system, name))
+        print(await client.get_version(system, name, version))
+        print(await client.get_requirements(system, name, version))
+        print(await client.get_dependencies(system, name, version))
+        print(await client.get_project(project_id))
+        print(await client.get_project_package_versions(project_id))
+        print(await client.get_advisory(advisory_id))
+        print(
+            await client.query(
+                system=System.NPM,
+                name="react",
+                version="18.2.0",
+            )
+        )
+        print(
+            await client.get_version_batch(
+                [
+                    {"system": "NPM", "name": "@colors/colors", "version": "1.5.0"},
+                    {"system": "NUGET", "name": "castle.core", "version": "5.1.1"},
+                ]
+            )
+        )
+        print(await client.get_dependents(system, name, version))
+        # print(await client.get_capabilities(system, name, version))
+        print(
+            await client.get_project_batch(
+                ["github.com/facebook/react", "github.com/angular/angular"]
+            )
+        )
+        purl1 = "pkg:npm/@colors/colors"
+        purl2 = "pkg:npm/@colors/colors@1.5.0"
+        print(await client.get_similarly_named_packages(system, name))
+        print(await client.purl_lookup(purl1))
+        print(await client.purl_lookup_batch([purl2]))
+        # print(await client.query_container_images(""))
+    asyncio.run(main())

{depsdev-0.0.1.dist-info → depsdev-0.0.2.dist-info}/METADATA RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: depsdev
-Version: 0.0.1
+Version: 0.0.2
 Summary: Python wrapper for https://deps.dev/ API
 Project-URL: Documentation, https://github.com/FlavioAmurrioCS/depsdev#readme
 Project-URL: Issues, https://github.com/FlavioAmurrioCS/depsdev/issues
@@ -19,16 +19,24 @@ Classifier: Programming Language :: Python :: 3.14
 Classifier: Programming Language :: Python :: Implementation :: CPython
 Classifier: Programming Language :: Python :: Implementation :: PyPy
 Requires-Python: >=3.9
+Requires-Dist: httpx
+Provides-Extra: cli
+Requires-Dist: rich; extra == 'cli'
+Requires-Dist: typer-slim; extra == 'cli'
 Provides-Extra: tests
 Requires-Dist: pytest; extra == 'tests'
+Requires-Dist: rich; extra == 'tests'
 Requires-Dist: tomli; (python_version < '3.11') and extra == 'tests'
+Requires-Dist: typer-slim; extra == 'tests'
 Provides-Extra: types
 Requires-Dist: mypy; extra == 'types'
 Requires-Dist: pyrefly; extra == 'types'
 Requires-Dist: pyright[nodejs]; extra == 'types'
 Requires-Dist: pytest; extra == 'types'
+Requires-Dist: rich; extra == 'types'
 Requires-Dist: tomli; (python_version < '3.11') and extra == 'types'
 Requires-Dist: ty; extra == 'types'
+Requires-Dist: typer-slim; extra == 'types'
 Requires-Dist: typing-extensions; extra == 'types'
 Description-Content-Type: text/markdown
@@ -42,13 +50,19 @@ Description-Content-Type: text/markdown
 ## Table of Contents
+- [Overview](#overview)
 - [Installation](#installation)
 - [License](#license)
+## Overview
+Thin Python wrapper (async-first) around the public [deps.dev REST API](https://deps.dev) plus an optional Typer-based CLI. Provides straightforward methods mapping closely to the documented endpoints; responses are returned as decoded JSON (dict / list). Alpha endpoints can be enabled via `DEPSDEV_V3_ALPHA=true` and may change without notice.
 ## Installation
-```console
-pip install depsdev
+```bash
+pip install depsdev            # library only
+pip install depsdev[cli]       # library + CLI
 ```
 ## License

depsdev-0.0.2.dist-info/RECORD ADDED Viewed

@@ -0,0 +1,11 @@
+depsdev/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+depsdev/__main__.py,sha256=iLGic-dGQX0SdzL3KJOibUdG1J7nFSvighn9E2nP29w,4526
+depsdev/_version.py,sha256=wO7XWlZte1hxA4mMvRc6zhNdGm74Nhhn2bfWRAxaKbI,511
+depsdev/py.typed,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+depsdev/v3.py,sha256=9MPK2h6QmxKnBz8KNF2GPTRlClOlM7xWO6TbtnRiQbE,7740
+depsdev/v3alpha.py,sha256=KUl8Fq9mLExAfrU5T43vAc1dlRBbugN3H2Eg4Tv5XxE,13908
+depsdev-0.0.2.dist-info/METADATA,sha256=nPf24oXHCDXIfkWGgoElJRiXS8RO7NoE14QByGS9-sw,2902
+depsdev-0.0.2.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
+depsdev-0.0.2.dist-info/entry_points.txt,sha256=yVCFtXda2xhj-7SmKEw7ynA_8QJrmKi9tORDw2uco9Q,50
+depsdev-0.0.2.dist-info/licenses/LICENSE.txt,sha256=jpNC8_qYxlJENCgo7GKooe4rsIx-t_wIWl7ngr03F2k,1131
+depsdev-0.0.2.dist-info/RECORD,,

depsdev-0.0.1.dist-info/RECORD DELETED Viewed

@@ -1,9 +0,0 @@
-depsdev/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-depsdev/__main__.py,sha256=IezDkTm-_ae5VyuQJRMmBjc-imTcqEX6picfoiLq0vE,290
-depsdev/_version.py,sha256=vgltXBYF55vNcC2regxjGN0_cbebmm8VgcDdQaDapWQ,511
-depsdev/py.typed,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-depsdev-0.0.1.dist-info/METADATA,sha256=AIPgvmTTFPJrr1C2Y4nN_hxrf9CXAGzQgm_xhGO1Id8,2165
-depsdev-0.0.1.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
-depsdev-0.0.1.dist-info/entry_points.txt,sha256=yVCFtXda2xhj-7SmKEw7ynA_8QJrmKi9tORDw2uco9Q,50
-depsdev-0.0.1.dist-info/licenses/LICENSE.txt,sha256=jpNC8_qYxlJENCgo7GKooe4rsIx-t_wIWl7ngr03F2k,1131
-depsdev-0.0.1.dist-info/RECORD,,

{depsdev-0.0.1.dist-info → depsdev-0.0.2.dist-info}/WHEEL RENAMED Viewed

File without changes

{depsdev-0.0.1.dist-info → depsdev-0.0.2.dist-info}/entry_points.txt RENAMED Viewed

File without changes

{depsdev-0.0.1.dist-info → depsdev-0.0.2.dist-info}/licenses/LICENSE.txt RENAMED Viewed

File without changes

depsdev 0.0.1__py3-none-any.whl → 0.0.2__py3-none-any.whl

depsdev 0.0.1py3-none-any.whl → 0.0.2py3-none-any.whl