pysentry-rs 0.3.3__tar.gz → 0.3.5__tar.gz

{pysentry_rs-0.3.3 → pysentry_rs-0.3.5}/.pre-commit-hooks.yaml

@@ -1,10 +1,10 @@
 - id: pysentry
   name: pysentry
   description: "Fast security vulnerability scanner for Python dependencies"
-  entry: pysentry
+  entry: pysentry-rs
   language: python
   always_run: true
   additional_dependencies:
-    ["pysentry-rs==0.3.3", "uv==0.8.9", "pip-tools==7.5.0"]
+    ["pysentry-rs==0.3.4", "uv==0.8.9", "pip-tools==7.5.0"]
   minimum_pre_commit_version: "2.9.2"
   types: [python]

{pysentry_rs-0.3.3 → pysentry_rs-0.3.5}/Cargo.lock

@@ -108,9 +108,9 @@ dependencies = [
 
 [[package]]
 name = "async-trait"
-version = "0.1.88"
+version = "0.1.89"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "e539d3fca749fcee5236ab05e93a52867dd549cc157c8cb7f99595f3cedffdb5"
+checksum = "9035ad2d096bed7955a320ee7e2230574d28fd3c3a0f186cbea1ff3c7eed5dbb"
 dependencies = [
  "proc-macro2",
  "quote",
@@ -253,6 +253,16 @@ version = "1.0.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "b05b61dc5112cbb17e4b6cd61790d9845d13888356391624cbe7e41efeac1e75"
 
+[[package]]
+name = "core-foundation"
+version = "0.10.1"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "b2a6cd9ae233e7f62ba4e9353e81a88df7fc8a5987b8d445b4d90c879bd156f6"
+dependencies = [
+ "core-foundation-sys",
+ "libc",
+]
+
 [[package]]
 name = "core-foundation-sys"
 version = "0.8.7"
@@ -610,11 +620,11 @@ dependencies = [
  "hyper",
  "hyper-util",
  "rustls",
+ "rustls-native-certs",
  "rustls-pki-types",
  "tokio",
  "tokio-rustls",
  "tower-service",
- "webpki-roots",
 ]
 
 [[package]]
@@ -976,6 +986,12 @@ version = "1.70.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "a4895175b425cb1f87721b59f0f286c2092bd4af812243672510e1ac53e2e0ad"
 
+[[package]]
+name = "openssl-probe"
+version = "0.1.6"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "d05e27ee213611ffe7d6348b942e8f942b37114c00cc03cec254295a4a17852e"
+
 [[package]]
 name = "option-ext"
 version = "0.2.0"
@@ -1121,7 +1137,7 @@ dependencies = [
 
 [[package]]
 name = "pysentry"
-version = "0.3.3"
+version = "0.3.5"
 dependencies = [
  "anyhow",
  "async-trait",
@@ -1305,9 +1321,9 @@ checksum = "2b15c43186be67a4fd63bee50d0303afffcef381492ebe2c5d87f324e1b8815c"
 
 [[package]]
 name = "reqwest"
-version = "0.12.22"
+version = "0.12.23"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "cbc931937e6ca3a06e3b6c0aa7841849b160a90351d6ab467a8b9b9959767531"
+checksum = "d429f34c8092b2d42c7c93cec323bb4adeb7c67698f70839adec842ec10c7ceb"
 dependencies = [
  "base64",
  "bytes",
@@ -1325,6 +1341,7 @@ dependencies = [
  "pin-project-lite",
  "quinn",
  "rustls",
+ "rustls-native-certs",
  "rustls-pki-types",
  "serde",
  "serde_json",
@@ -1341,7 +1358,6 @@ dependencies = [
  "wasm-bindgen-futures",
  "wasm-streams",
  "web-sys",
- "webpki-roots",
 ]
 
 [[package]]
@@ -1397,6 +1413,18 @@ dependencies = [
  "zeroize",
 ]
 
+[[package]]
+name = "rustls-native-certs"
+version = "0.8.1"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "7fcff2dd52b58a8d98a70243663a0d234c4e2b79235637849d15913394a247d3"
+dependencies = [
+ "openssl-probe",
+ "rustls-pki-types",
+ "schannel",
+ "security-framework",
+]
+
 [[package]]
 name = "rustls-pki-types"
 version = "1.12.0"
@@ -1430,6 +1458,38 @@ version = "1.0.20"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "28d3b2b1366ec20994f1fd18c3c594f05c5dd4bc44d8bb0c1c632c8d6829481f"
 
+[[package]]
+name = "schannel"
+version = "0.1.27"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "1f29ebaa345f945cec9fbbc532eb307f0fdad8161f281b6369539c8d84876b3d"
+dependencies = [
+ "windows-sys 0.59.0",
+]
+
+[[package]]
+name = "security-framework"
+version = "3.3.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "80fb1d92c5028aa318b4b8bd7302a5bfcf48be96a37fc6fc790f806b0004ee0c"
+dependencies = [
+ "bitflags",
+ "core-foundation",
+ "core-foundation-sys",
+ "libc",
+ "security-framework-sys",
+]
+
+[[package]]
+name = "security-framework-sys"
+version = "2.14.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "49db231d56a190491cb4aeda9527f1ad45345af50b0851622a7adb8c03b01c32"
+dependencies = [
+ "core-foundation-sys",
+ "libc",
+]
+
 [[package]]
 name = "serde"
 version = "1.0.219"
@@ -1639,18 +1699,18 @@ dependencies = [
 
 [[package]]
 name = "thiserror"
-version = "2.0.12"
+version = "2.0.15"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "567b8a2dae586314f7be2a752ec7474332959c6460e02bde30d702a66d488708"
+checksum = "80d76d3f064b981389ecb4b6b7f45a0bf9fdac1d5b9204c7bd6714fecc302850"
 dependencies = [
  "thiserror-impl",
 ]
 
 [[package]]
 name = "thiserror-impl"
-version = "2.0.12"
+version = "2.0.15"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7f7cf42b4507d8ea322120659672cf1b9dbb93f8f2d4ecfd6e51350ff5b17a1d"
+checksum = "44d29feb33e986b6ea906bd9c3559a856983f92371b3eaa5e83782a351623de0"
 dependencies = [
  "proc-macro2",
  "quote",
@@ -2100,15 +2160,6 @@ dependencies = [
  "wasm-bindgen",
 ]
 
-[[package]]
-name = "webpki-roots"
-version = "1.0.2"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "7e8983c3ab33d6fb807cfcdad2491c4ea8cbc8ed839181c7dfd9c67c83e261b2"
-dependencies = [
- "rustls-pki-types",
-]
-
 [[package]]
 name = "winapi"
 version = "0.3.9"

{pysentry_rs-0.3.3 → pysentry_rs-0.3.5}/Cargo.toml

@@ -1,6 +1,6 @@
 [package]
 name = "pysentry"
-version = "0.3.3"
+version = "0.3.5"
 edition = "2021"
 rust-version = "1.79"
 description = "Security vulnerability auditing for Python packages"
@@ -23,7 +23,7 @@ python = ["pyo3"]
 
 [dependencies]
 anyhow = "1.0.99"
-async-trait = "0.1.88"
+async-trait = "0.1.89"
 chrono = { version = "0.4.41", features = ["serde"] }
 clap = { version = "4.5.45", features = ["derive"] }
 dirs = "6.0.0"
@@ -33,14 +33,14 @@ owo-colors = "4.2.2"
 pep440_rs = "0.7.3"
 pyo3 = { version = "0.25.1", features = ["extension-module"], optional = true }
 regex = "1.11.1"
-reqwest = { version = "0.12.22", features = ["json", "stream", "rustls-tls"], default-features = false }
+reqwest = { version = "0.12.23", features = ["json", "stream", "rustls-tls-native-roots"], default-features = false }
 rustc-hash = "2.1.1"
 serde = { version = "1.0.219", features = ["derive"] }
 serde_json = "1.0.142"
 serde_yaml = "0.9.34"
 sha2 = "0.10.9"
 tempfile = "3.20.0"
-thiserror = "2.0.12"
+thiserror = "2.0.15"
 tokio = { version = "1.47.1", features = ["fs", "io-util", "rt-multi-thread", "macros", "process"] }
 toml = "0.9.5"
 tracing = "0.1.41"

{pysentry_rs-0.3.3 → pysentry_rs-0.3.5}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: pysentry-rs
-Version: 0.3.3
+Version: 0.3.5
 Classifier: Development Status :: 4 - Beta
 Classifier: Intended Audience :: Developers
 Classifier: License :: OSI Approved :: GNU General Public License v3 (GPLv3)
@@ -30,15 +30,17 @@ Project-URL: Issues, https://github.com/nyudenkov/pysentry/issues
 
 [Help to test and improve](https://github.com/nyudenkov/pysentry/issues/12) | [Latest PySentry - pip-audit benchmark](benchmarks/results/latest.md)
 
+Please, send feedback to nikita@pysentry.com
+
 A fast, reliable security vulnerability scanner for Python projects, written in Rust.
 
 ## Overview
 
-PySentry audits Python projects for known security vulnerabilities by analyzing dependency files (`uv.lock`, `poetry.lock`, `pyproject.toml`, `requirements.txt`) and cross-referencing them against multiple vulnerability databases. It provides comprehensive reporting with support for various output formats and filtering options.
+PySentry audits Python projects for known security vulnerabilities by analyzing dependency files (`uv.lock`, `poetry.lock`, `Pipfile.lock`, `pyproject.toml`, `Pipfile`, `requirements.txt`) and cross-referencing them against multiple vulnerability databases. It provides comprehensive reporting with support for various output formats and filtering options.
 
 ## Key Features
 
-- **Multiple Project Formats**: Supports `uv.lock`, `poetry.lock`, `pyproject.toml`, and `requirements.txt` files
+- **Multiple Project Formats**: Supports `uv.lock`, `poetry.lock`, `Pipfile.lock`, `pyproject.toml`, `Pipfile`, and `requirements.txt` files
 - **External Resolver Integration**: Leverages `uv` and `pip-tools` for accurate requirements.txt constraint solving
 - **Multiple Data Sources**:
   - PyPA Advisory Database (default)
@@ -191,7 +193,7 @@ uvx pysentry-rs /path/to/python/project
 pysentry
 pysentry /path/to/python/project
 
-# Automatically detects project type (uv.lock, poetry.lock, pyproject.toml, requirements.txt)
+# Automatically detects project type (uv.lock, poetry.lock, Pipfile.lock, pyproject.toml, Pipfile, requirements.txt)
 pysentry /path/to/project
 
 # Force specific resolver
@@ -494,6 +496,46 @@ Full support for Poetry lock files:
 - Handles Poetry's dependency groups and optional dependencies
 - Perfect for Poetry-managed projects with established lock files
 
+### Pipfile.lock Files
+
+Full support for Pipenv lock files with exact version resolution:
+
+- **Exact Version Resolution**: Scans exact dependency versions locked by Pipenv
+- **Lock-File Only Analysis**: Relies purely on the lock file structure, no Pipfile parsing needed
+- **Complete Dependency Tree**: Analyzes all resolved dependencies including transitive ones
+- **Dependency Classification**: Distinguishes between default dependencies and development groups
+
+**Key Features:**
+
+- No external tools required
+- Fast parsing with exact version information
+- Handles Pipenv's dependency groups (default and develop)
+- Perfect for Pipenv-managed projects with established lock files
+
+### Pipfile Files (External Resolution)
+
+Support for Pipfile specification files using external dependency resolvers:
+
+**Key Features:**
+
+- **Dependencies Resolution**: Converts version constraints from Pipfile to exact versions using mature external tools
+- **Multiple Resolver Support**:
+  - **uv**: Rust-based resolver, extremely fast and reliable (recommended)
+  - **pip-tools**: Python-based resolver using `pip-compile`, widely compatible
+- **Auto-detection**: Automatically detects and uses the best available resolver in your environment
+- **Dependency Groups**: Supports both default packages and dev-packages sections
+- **Complex Constraint Handling**: Supports version ranges, Git dependencies, and environment markers
+
+**Resolution Workflow:**
+
+1. Detects `Pipfile` in your project (when `Pipfile.lock` is not present)
+2. Auto-detects available resolver (`uv` or `pip-tools`) in current environment
+3. Resolves version constraints to exact dependency versions
+4. Scans resolved dependencies for vulnerabilities
+5. Reports findings with dependency group classification
+
+**Note**: When both `Pipfile` and `Pipfile.lock` are present, PySentry prioritizes the lock file for better accuracy. Consider using `pipenv lock` to generate a lock file for the most precise vulnerability scanning.
+
 ### requirements.txt Files (External Resolution)
 
 Advanced support for `requirements.txt` files using external dependency resolvers:
@@ -732,7 +774,7 @@ pysentry /path/to/python/project
 pysentry --requirements requirements-dev.txt --requirements requirements-test.txt
 
 # Check if higher-priority files exist (they take precedence)
-ls uv.lock poetry.lock pyproject.toml
+ls uv.lock poetry.lock Pipfile.lock pyproject.toml Pipfile requirements.txt
 ```
 
 **Performance Issues**

{pysentry_rs-0.3.3 → pysentry_rs-0.3.5}/README.md

@@ -4,15 +4,17 @@
 
 [Help to test and improve](https://github.com/nyudenkov/pysentry/issues/12) | [Latest PySentry - pip-audit benchmark](benchmarks/results/latest.md)
 
+Please, send feedback to nikita@pysentry.com
+
 A fast, reliable security vulnerability scanner for Python projects, written in Rust.
 
 ## Overview
 
-PySentry audits Python projects for known security vulnerabilities by analyzing dependency files (`uv.lock`, `poetry.lock`, `pyproject.toml`, `requirements.txt`) and cross-referencing them against multiple vulnerability databases. It provides comprehensive reporting with support for various output formats and filtering options.
+PySentry audits Python projects for known security vulnerabilities by analyzing dependency files (`uv.lock`, `poetry.lock`, `Pipfile.lock`, `pyproject.toml`, `Pipfile`, `requirements.txt`) and cross-referencing them against multiple vulnerability databases. It provides comprehensive reporting with support for various output formats and filtering options.
 
 ## Key Features
 
-- **Multiple Project Formats**: Supports `uv.lock`, `poetry.lock`, `pyproject.toml`, and `requirements.txt` files
+- **Multiple Project Formats**: Supports `uv.lock`, `poetry.lock`, `Pipfile.lock`, `pyproject.toml`, `Pipfile`, and `requirements.txt` files
 - **External Resolver Integration**: Leverages `uv` and `pip-tools` for accurate requirements.txt constraint solving
 - **Multiple Data Sources**:
   - PyPA Advisory Database (default)
@@ -165,7 +167,7 @@ uvx pysentry-rs /path/to/python/project
 pysentry
 pysentry /path/to/python/project
 
-# Automatically detects project type (uv.lock, poetry.lock, pyproject.toml, requirements.txt)
+# Automatically detects project type (uv.lock, poetry.lock, Pipfile.lock, pyproject.toml, Pipfile, requirements.txt)
 pysentry /path/to/project
 
 # Force specific resolver
@@ -468,6 +470,46 @@ Full support for Poetry lock files:
 - Handles Poetry's dependency groups and optional dependencies
 - Perfect for Poetry-managed projects with established lock files
 
+### Pipfile.lock Files
+
+Full support for Pipenv lock files with exact version resolution:
+
+- **Exact Version Resolution**: Scans exact dependency versions locked by Pipenv
+- **Lock-File Only Analysis**: Relies purely on the lock file structure, no Pipfile parsing needed
+- **Complete Dependency Tree**: Analyzes all resolved dependencies including transitive ones
+- **Dependency Classification**: Distinguishes between default dependencies and development groups
+
+**Key Features:**
+
+- No external tools required
+- Fast parsing with exact version information
+- Handles Pipenv's dependency groups (default and develop)
+- Perfect for Pipenv-managed projects with established lock files
+
+### Pipfile Files (External Resolution)
+
+Support for Pipfile specification files using external dependency resolvers:
+
+**Key Features:**
+
+- **Dependencies Resolution**: Converts version constraints from Pipfile to exact versions using mature external tools
+- **Multiple Resolver Support**:
+  - **uv**: Rust-based resolver, extremely fast and reliable (recommended)
+  - **pip-tools**: Python-based resolver using `pip-compile`, widely compatible
+- **Auto-detection**: Automatically detects and uses the best available resolver in your environment
+- **Dependency Groups**: Supports both default packages and dev-packages sections
+- **Complex Constraint Handling**: Supports version ranges, Git dependencies, and environment markers
+
+**Resolution Workflow:**
+
+1. Detects `Pipfile` in your project (when `Pipfile.lock` is not present)
+2. Auto-detects available resolver (`uv` or `pip-tools`) in current environment
+3. Resolves version constraints to exact dependency versions
+4. Scans resolved dependencies for vulnerabilities
+5. Reports findings with dependency group classification
+
+**Note**: When both `Pipfile` and `Pipfile.lock` are present, PySentry prioritizes the lock file for better accuracy. Consider using `pipenv lock` to generate a lock file for the most precise vulnerability scanning.
+
 ### requirements.txt Files (External Resolution)
 
 Advanced support for `requirements.txt` files using external dependency resolvers:
@@ -706,7 +748,7 @@ pysentry /path/to/python/project
 pysentry --requirements requirements-dev.txt --requirements requirements-test.txt
 
 # Check if higher-priority files exist (they take precedence)
-ls uv.lock poetry.lock pyproject.toml
+ls uv.lock poetry.lock Pipfile.lock pyproject.toml Pipfile requirements.txt
 ```
 
 **Performance Issues**

pysentry_rs-0.3.5/benchmarks/results/0.3.3.md

@@ -0,0 +1,141 @@
+# PySentry - pip-audit Benchmark Report
+
+**Generated:** 2025-08-13 19:15:14
+**Duration:** 2m 31.44s
+**Total Tests:** 20
+
+## Executive Summary
+
+**Overall Success Rate:** 100.0% (20/20 successful runs)
+
+### Small_Requirements Dataset - Cold Cache
+- **Fastest:** pysentry-pypi (0.256s) - 36.61x faster than slowest
+- **Memory Efficient:** pysentry-osv (10.62 MB) - 10.00x less memory than highest
+
+### Small_Requirements Dataset - Hot Cache
+- **Fastest:** pysentry-pypi (0.294s) - 26.45x faster than slowest
+- **Memory Efficient:** pysentry-pypi (8.86 MB) - 12.13x less memory than highest
+
+### Large_Requirements Dataset - Cold Cache
+- **Fastest:** pysentry-pypi (0.761s) - 50.91x faster than slowest
+- **Memory Efficient:** pysentry-osv (10.78 MB) - 10.57x less memory than highest
+
+### Large_Requirements Dataset - Hot Cache
+- **Fastest:** pysentry-pypi (0.693s) - 22.77x faster than slowest
+- **Memory Efficient:** pysentry-pypi (8.71 MB) - 11.50x less memory than highest
+
+## Test Environment
+
+- **Platform:** Linux-6.11.0-1018-azure-x86_64-with-glibc2.39
+- **Python Version:** 3.11.13
+- **CPU Cores:** 4
+- **Total Memory:** 15.62 GB
+- **Available Memory:** 14.64 GB
+
+## Performance Comparison
+
+### Small_Requirements Dataset - Cold Cache
+
+#### Execution Time Comparison
+
+| Tool Configuration | Execution Time | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-pypi | 0.256s | 1.00x |
+| 🥈 pysentry-osv | 0.959s | 3.74x |
+|  pysentry-pypa | 1.096s | 4.28x |
+|  pysentry-all-sources | 4.783s | 18.65x |
+|  pip-audit-default | 9.387s | 36.61x |
+
+#### Memory Usage Comparison
+
+| Tool Configuration | Peak Memory | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-osv | 10.62 MB | 1.00x |
+| 🥈 pysentry-pypi | 10.90 MB | 1.03x |
+|  pip-audit-default | 45.28 MB | 4.26x |
+|  pysentry-pypa | 55.32 MB | 5.21x |
+|  pysentry-all-sources | 106.14 MB | 10.00x |
+
+### Small_Requirements Dataset - Hot Cache
+
+#### Execution Time Comparison
+
+| Tool Configuration | Execution Time | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-pypi | 0.294s | 1.00x |
+| 🥈 pysentry-pypa | 0.854s | 2.90x |
+|  pysentry-all-sources | 1.012s | 3.44x |
+|  pysentry-osv | 1.217s | 4.13x |
+|  pip-audit-default | 7.785s | 26.45x |
+
+#### Memory Usage Comparison
+
+| Tool Configuration | Peak Memory | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-pypi | 8.86 MB | 1.00x |
+| 🥈 pysentry-osv | 10.52 MB | 1.19x |
+|  pip-audit-default | 44.48 MB | 5.02x |
+|  pysentry-pypa | 67.44 MB | 7.61x |
+|  pysentry-all-sources | 107.53 MB | 12.13x |
+
+### Large_Requirements Dataset - Cold Cache
+
+#### Execution Time Comparison
+
+| Tool Configuration | Execution Time | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-pypi | 0.761s | 1.00x |
+| 🥈 pysentry-pypa | 1.276s | 1.68x |
+|  pysentry-osv | 3.144s | 4.13x |
+|  pip-audit-default | 17.817s | 23.41x |
+|  pysentry-all-sources | 38.757s | 50.91x |
+
+#### Memory Usage Comparison
+
+| Tool Configuration | Peak Memory | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-osv | 10.78 MB | 1.00x |
+| 🥈 pysentry-pypi | 12.95 MB | 1.20x |
+|  pip-audit-default | 47.48 MB | 4.40x |
+|  pysentry-pypa | 62.62 MB | 5.81x |
+|  pysentry-all-sources | 113.92 MB | 10.57x |
+
+### Large_Requirements Dataset - Hot Cache
+
+#### Execution Time Comparison
+
+| Tool Configuration | Execution Time | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-pypi | 0.693s | 1.00x |
+| 🥈 pysentry-pypa | 1.308s | 1.89x |
+|  pysentry-all-sources | 3.079s | 4.44x |
+|  pysentry-osv | 3.115s | 4.50x |
+|  pip-audit-default | 15.778s | 22.77x |
+
+#### Memory Usage Comparison
+
+| Tool Configuration | Peak Memory | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-pypi | 8.71 MB | 1.00x |
+| 🥈 pysentry-osv | 10.64 MB | 1.22x |
+|  pip-audit-default | 46.98 MB | 5.39x |
+|  pysentry-pypa | 53.95 MB | 6.19x |
+|  pysentry-all-sources | 100.21 MB | 11.50x |
+
+## Detailed Analysis
+
+### Pysentry Performance
+
+- **Execution Time:** Avg: 3.913s, Min: 0.256s, Max: 38.757s
+
+- **Memory Usage:** Avg: 46.95 MB, Min: 8.71 MB, Max: 113.92 MB
+
+- **Success Rate:** 100.0% (16/16)
+
+### Pip-Audit Performance
+
+- **Execution Time:** Avg: 12.692s, Min: 7.785s, Max: 17.817s
+
+- **Memory Usage:** Avg: 46.05 MB, Min: 44.48 MB, Max: 47.48 MB
+
+- **Success Rate:** 100.0% (4/4)

pysentry_rs-0.3.5/benchmarks/results/0.3.4.md

@@ -0,0 +1,141 @@
+# PySentry - pip-audit Benchmark Report
+
+**Generated:** 2025-08-14 15:42:52
+**Duration:** 1m 55.57s
+**Total Tests:** 20
+
+## Executive Summary
+
+**Overall Success Rate:** 100.0% (20/20 successful runs)
+
+### Small_Requirements Dataset - Cold Cache
+- **Fastest:** pysentry-pypi (0.306s) - 28.70x faster than slowest
+- **Memory Efficient:** pysentry-osv (10.63 MB) - 10.15x less memory than highest
+
+### Small_Requirements Dataset - Hot Cache
+- **Fastest:** pysentry-pypi (0.224s) - 36.53x faster than slowest
+- **Memory Efficient:** pysentry-osv (10.78 MB) - 9.89x less memory than highest
+
+### Large_Requirements Dataset - Cold Cache
+- **Fastest:** pysentry-pypi (0.996s) - 18.56x faster than slowest
+- **Memory Efficient:** pysentry-osv (10.98 MB) - 9.40x less memory than highest
+
+### Large_Requirements Dataset - Hot Cache
+- **Fastest:** pysentry-pypi (0.657s) - 24.63x faster than slowest
+- **Memory Efficient:** pysentry-osv (10.68 MB) - 10.06x less memory than highest
+
+## Test Environment
+
+- **Platform:** Linux-6.11.0-1018-azure-x86_64-with-glibc2.39
+- **Python Version:** 3.11.13
+- **CPU Cores:** 4
+- **Total Memory:** 15.62 GB
+- **Available Memory:** 14.62 GB
+
+## Performance Comparison
+
+### Small_Requirements Dataset - Cold Cache
+
+#### Execution Time Comparison
+
+| Tool Configuration | Execution Time | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-pypi | 0.306s | 1.00x |
+| 🥈 pysentry-osv | 0.992s | 3.24x |
+|  pysentry-pypa | 1.225s | 4.00x |
+|  pysentry-all-sources | 1.238s | 4.04x |
+|  pip-audit-default | 8.785s | 28.70x |
+
+#### Memory Usage Comparison
+
+| Tool Configuration | Peak Memory | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-osv | 10.63 MB | 1.00x |
+| 🥈 pysentry-pypi | 12.06 MB | 1.13x |
+|  pip-audit-default | 45.50 MB | 4.28x |
+|  pysentry-pypa | 73.88 MB | 6.95x |
+|  pysentry-all-sources | 107.95 MB | 10.15x |
+
+### Small_Requirements Dataset - Hot Cache
+
+#### Execution Time Comparison
+
+| Tool Configuration | Execution Time | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-pypi | 0.224s | 1.00x |
+| 🥈 pysentry-pypa | 1.027s | 4.59x |
+|  pysentry-all-sources | 1.136s | 5.08x |
+|  pysentry-osv | 1.142s | 5.11x |
+|  pip-audit-default | 8.165s | 36.53x |
+
+#### Memory Usage Comparison
+
+| Tool Configuration | Peak Memory | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-osv | 10.78 MB | 1.00x |
+| 🥈 pysentry-pypi | 12.29 MB | 1.14x |
+|  pip-audit-default | 44.93 MB | 4.17x |
+|  pysentry-pypa | 74.12 MB | 6.88x |
+|  pysentry-all-sources | 106.62 MB | 9.89x |
+
+### Large_Requirements Dataset - Cold Cache
+
+#### Execution Time Comparison
+
+| Tool Configuration | Execution Time | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-pypi | 0.996s | 1.00x |
+| 🥈 pysentry-pypa | 1.328s | 1.33x |
+|  pysentry-osv | 3.112s | 3.13x |
+|  pysentry-all-sources | 3.483s | 3.50x |
+|  pip-audit-default | 18.476s | 18.56x |
+
+#### Memory Usage Comparison
+
+| Tool Configuration | Peak Memory | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-osv | 10.98 MB | 1.00x |
+| 🥈 pysentry-pypi | 13.16 MB | 1.20x |
+|  pip-audit-default | 47.48 MB | 4.32x |
+|  pysentry-pypa | 72.94 MB | 6.64x |
+|  pysentry-all-sources | 103.27 MB | 9.40x |
+
+### Large_Requirements Dataset - Hot Cache
+
+#### Execution Time Comparison
+
+| Tool Configuration | Execution Time | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-pypi | 0.657s | 1.00x |
+| 🥈 pysentry-pypa | 1.518s | 2.31x |
+|  pysentry-all-sources | 3.055s | 4.65x |
+|  pysentry-osv | 3.429s | 5.22x |
+|  pip-audit-default | 16.172s | 24.63x |
+
+#### Memory Usage Comparison
+
+| Tool Configuration | Peak Memory | Relative Performance |
+|---------------------|---------------------|---------------------|
+| 🥇 pysentry-osv | 10.68 MB | 1.00x |
+| 🥈 pysentry-pypi | 13.18 MB | 1.23x |
+|  pip-audit-default | 48.80 MB | 4.57x |
+|  pysentry-pypa | 72.41 MB | 6.78x |
+|  pysentry-all-sources | 107.36 MB | 10.06x |
+
+## Detailed Analysis
+
+### Pysentry Performance
+
+- **Execution Time:** Avg: 1.554s, Min: 0.224s, Max: 3.483s
+
+- **Memory Usage:** Avg: 50.77 MB, Min: 10.63 MB, Max: 107.95 MB
+
+- **Success Rate:** 100.0% (16/16)
+
+### Pip-Audit Performance
+
+- **Execution Time:** Avg: 12.899s, Min: 8.165s, Max: 18.476s
+
+- **Memory Usage:** Avg: 46.68 MB, Min: 44.93 MB, Max: 48.80 MB
+
+- **Success Rate:** 100.0% (4/4)