Keyword: cve
- @lockhawk/coreReleased5d agoVersion0.2.7
Scanning engine for lockhawk: lockfile parsing, OSV.dev vulnerability matching, CVSS v3/v4 scoring, and SARIF/JUnit/HTML reports
- nsauditor-ai-agent-skillReleasedyesterdayVersion0.2.18
AI Agent Skill for NSAuditor AI — gives any AI coding agent built-in knowledge of NSAuditor's MCP tools, schemas, plugins, and security audit workflows.
- lockhawkReleased5d agoVersion0.2.7
Fast, free, accurate npm dependency vulnerability scanner for local + CI/CD with an interactive HTML dashboard and SARIF/JUnit output, powered by OSV.dev
- npm-guardian-mcpReleased5d agoVersion0.4.0
Supply-chain security audit for npm packages, as an MCP tool and a pay-per-call x402 endpoint. Cross-references known CVE/GHSA advisories (OSV.dev) and detects typosquatting, malicious install scripts, token/credential exfiltration and other red flags BEF
- pastoralistReleased4d agoVersion1.12.7
Audit, secure, and clean up package manager overrides for npm, pnpm, Yarn, and Bun.
- @datanexusmcp/mcp-serverReleased2d agoVersion2.4.12
DataNexus MCP — AI-Ready public data intelligence. 55 tools: CVE risk verdicts, SBOM licence policy, frontend security (manifest audit, CI scanner, typosquatting), licence compatibility, nonprofit 990 trends, SBOM monitoring, federal contracts, NPI lookup
- cve-connectorReleased7h agoVersion0.5.2
UE Web 开发套件
- @marshell/chifuReleased11h agoVersion0.3.3
Make your AI coding agent dependency-security aware. Checks your project's dependencies against known CVEs so your agent can fix what it introduced — before merge.
- @patchstack/connectReleased4d agoVersion0.2.6
Patchstack connector for JavaScript applications. Scans your lockfile and reports installed packages to Patchstack for vulnerability monitoring.
- @arcane-spark/ubel-nodeReleasedyesterdayVersion0.6.0
Supply-chain security firewall for Node.js — resolves dependencies, scans via OSV.dev and NVD, and enforces configurable vulnerability policies before anything reaches node_modules.
- @hasna/shieldReleased1h agoVersion0.1.25
AI-powered security scanner for git repos — CLI, MCP, API, Web Dashboard, SDK with Cerebras LLM
- brewbarReleasedyesterdayVersion1.0.0
A localhost web GUI for managing macOS package managers — Homebrew plus npm, pip, cargo, go, gem, bun and pnpm. Real terminal, command preview, transactional operation queue, CVE scanning, on-demand disk-size & update scans, and an optional AI assistant.
- @attestd/sdkReleased3d agoVersion0.2.3
Official JavaScript/TypeScript client for the Attestd security risk API
- @attestd/mcpReleased3d agoVersion0.1.4
MCP server exposing Attestd CVE and supply-chain checks for Claude Code and other MCP clients
- echelongraph-mcpReleased3d agoVersion1.0.0
EchelonGraph CVE & internet-exposure intelligence as an MCP server — real-time CVEs, EchelonGraph multi-source scores, CISA-KEV/EPSS, and the unique LIVE internet-exposure footprint per CVE — for Claude, Cursor, and any MCP client.
- @publiccve/mcpReleased4d agoVersion0.1.0
PublicCVE MCP server — search_cves and analyze_attack over stdio
- supply-chain-mcp-serverReleased5d agoVersion0.1.0
Software supply chain security MCP server — vulnerability scanning, package analysis, provenance verification, typosquatting detection, dependency intelligence across npm, PyPI, crates.io, Go, and more
- @blamejs/exceptd-skillsReleasedyesterdayVersion0.18.20
AI security skills grounded in mid-2026 threat reality, not stale framework documentation. 51 skills, 11 catalogs (499 CVEs / 189 CWEs / 805 ATT&CK + ICS / 170 ATLAS / 468 D3FEND / 8888 RFCs), 35 jurisdictions, 10-class catalog gap detector + budget gate,