{"library":"tuf","type":"library","category":null,"description":"python-tuf is the Python reference implementation of The Update Framework (TUF), a framework for securing software update systems against various supply chain attacks. It provides APIs for both client-side artifact verification (`tuf.ngclient`) and repository-side metadata management (`tuf.api.metadata`). The library is actively maintained and currently at version 6.0.0, with a release cadence that addresses security fixes and implements new specification features.","language":"python","status":"active","version":"6.0.0","tags":["security","update framework","supply chain security","client","repository","metadata","package management"],"last_verified":"Tue May 26","install":[{"cmd":"pip install tuf","imports":["from tuf.ngclient import Updater","from tuf.api.metadata import Metadata","from tuf.api.metadata import Root","from tuf.api.metadata import TargetFile"]},{"cmd":"pip install \"securesystemslib[crypto]\" tuf","imports":[]}],"homepage":"https://www.updateframework.com","github":"https://github.com/theupdateframework/python-tuf","docs":"https://theupdateframework.readthedocs.io/en/stable/","changelog":null,"pypi":"https://pypi.org/project/tuf/","npm":null,"openapi_spec":null,"status_page":null,"smithery":null,"compatibility":{"summary":{"python_range":"3.10–3.9","success_rate":100,"avg_install_s":2.2,"avg_import_s":0.32,"wheel_type":"wheel"},"url":"https://checklist.day/v1/registry/tuf/compatibility"}}