pypi:setuptoolsThis dossier links the stable identity pypi:setuptools to 9 exact observed versions across 13 public repositories.
A package identity or provider interface in published code does not prove configuration, an account, procurement, data transfer or an API call.
ecosystem:name + exact version + evidence pathPublication age and licenses come from deps.dev metadata. They are context—not a maintenance, legal or portability verdict.
13 Mar 202408 Jan 202524 Apr 202530 Apr 202504 May 202509 May 202520 May 202527 May 202509 Mar 2026sh/digitalhub-sh/landesprogramm-offene-innovationen/ki-bauleitplaene/smartplanai-anwendung2 Occurrencesuba-ki-lab/strahlenexposition2 Occurrencesenergieautarkes-wohnquartier/backend1 Occurrenceiqsh/collaboration-online-board/ai1 Occurrenceuba-ki-lab/coding-agent-usage-simulation1 Occurrenceuba-ki-lab/density-maps1 Occurrenceuba-ki-lab/gsa-extraction1 Occurrenceuba-ki-lab/llm-questionnaire-benchmarking-framework1 Occurrenceuba-ki-lab/llm-testframework1 Occurrenceuba-ki-lab/objection-management1 Occurrenceuba-ki-lab/photovoltaic_systems1 Occurrenceuba-ki-lab/ressource-efficient-computer-vision1 Occurrenceuba-ki-lab/retrieval-evaluation1 Occurrenceiqsh/collaboration-online-board/aiSPDX_v2.0.0.ymluba-ki-lab/coding-agent-usage-simulationuv.lockuba-ki-lab/density-mapsuv.lockenergieautarkes-wohnquartier/backendpoetry.lockuba-ki-lab/gsa-extractionuv.lockuba-ki-lab/llm-questionnaire-benchmarking-frameworkuv.lockuba-ki-lab/llm-testframeworkuv.lockuba-ki-lab/objection-managementuv.lockuba-ki-lab/photovoltaic_systemssbom.jsonuba-ki-lab/ressource-efficient-computer-visionuv.lockuba-ki-lab/retrieval-evaluationuv.locksh/digitalhub-sh/landesprogramm-offene-innovationen/ki-bauleitplaene/smartplanai-anwendungblp_streamlit_pipeline/src/ext/streamlit-draw-image-mask/poetry.locksh/digitalhub-sh/landesprogramm-offene-innovationen/ki-bauleitplaene/smartplanai-anwendungpoetry.lockuba-ki-lab/strahlenexpositionpoetry.lockuba-ki-lab/strahlenexpositionsbom.jsonsetuptools has a path traversal vulnerability in PackageIndex.download that leads to Arbitrary File Write
11 May 2026setuptools vulnerable to Command Injection via package URL
07 Jul 2026Not reported
14 Jul 2026Only exact npm and PyPI tuples are enriched. Reported SPDX expressions are metadata; no compatibility, obligation or legal conclusion is inferred.
Retrieval, parsing, matching and publishing use no generative AI model.i6eal (2026): setuptools — exact AI dependency evidence dossier, data state 19 Jul 2026. https://i6eal.de/en/tools/ki-abhaengigkeitsatlas/paket/setuptools-fe37c31a/
We build source-backed data products with stable identities, reproducible joins and boundaries that remain visible.
These tools complement the current result.