Keyword: sbom

supply-chain-guard
Released
6h ago
Version
5.2.42
Open-source supply-chain security scanner for npm, PyPI, Cargo, Go, Docker, VS Code extensions, GitHub Actions, IaC and Solana C2. Detects GlassWorm, Shai-Hulud, PPE attacks, dependency confusion and 120+ malware indicators. Generates CycloneDX 1.6 SBOMs
security supply-chain malware-detection npm pypi cargo +10
@nuguardai/nuguard
Released
3d ago
Version
0.8.2
AI Application Security — SBOM generation, static analysis, behavioral validation, and adversarial red-team testing for AI agents and LLM-powered applications.
mcp ai-security sbom red-team llm ai-agents
@peac/mappings-slsa
Released
16h ago
Version
0.16.1
SLSA v1.2 provenance mapping for PEAC provenance extension
peac peacprotocol interaction-records signed-records receipts originary +5
@peac/mappings-intoto
Released
16h ago
Version
0.16.1
in-toto v1.0 attestation mapping for PEAC provenance extension
peac peacprotocol interaction-records signed-records receipts originary +5
@pnpm/deps.compliance.commands
Released
5d ago
Version
1101.5.0
pnpm commands for audit, licenses, and sbom
pnpm pnpm11 audit licenses sbom
@datanexusmcp/mcp-server
Released
2d ago
Version
2.4.12
DataNexus MCP — AI-Ready public data intelligence. 55 tools: CVE risk verdicts, SBOM licence policy, frontend security (manifest audit, CI scanner, typosquatting), licence compatibility, nonprofit 990 trends, SBOM monitoring, federal contracts, NPI lookup
mcp model-context-protocol ai public-data open-data nonprofit +14
@arcane-spark/ubel-node
Released
yesterday
Version
0.6.0
Supply-chain security firewall for Node.js — resolves dependencies, scans via OSV.dev and NVD, and enforces configurable vulnerability policies before anything reaches node_modules.
security supply-chain vulnerability audit firewall sbom +14
sbomix
Released
2d ago
Version
0.3.1
Fast, accurate SBOM generation from GitHub repos and local lock files
sbom cyclonedx spdx aibom ai-bom supply-chain +3
@appthreat/atom
Released
yesterday
Version
3.0.3
Create atom (⚛) representation for your application, packages and libraries
code analysis threat sbom supply chain
@cyclonedx/cdxgen
Released
4d ago
Version
12.7.0
Creates CycloneDX Software Bill of Materials (SBOM) from source or container image
sbom bom inventory spdx package-url purl +5
packrai
Released
5d ago
Version
0.3.0
Fast, accurate SBOM generation from GitHub repos and local lock files
sbom cyclonedx spdx supply-chain security
@safedep/cli
Released
5d ago
Version
0.2.0
SafeDep CLI: open source software supply chain security
security supply-chain sbom safedep cli
@pnpm/deps.compliance.sbom
Released
5d ago
Version
1100.3.0
Generate SBOM from pnpm lockfile
pnpm pnpm11 cyclonedx sbom spdx
@ecosyste-ms/critical
Released
3h ago
Version
1.1.20260629
SQLite database of critical packages from ecosyste.ms
ecosystems packages sqlite critical sbom vulnerabilities