Keyword: sca
- @lockhawk/coreReleased5d agoVersion0.2.7
Scanning engine for lockhawk: lockfile parsing, OSV.dev vulnerability matching, CVSS v3/v4 scoring, and SARIF/JUnit/HTML reports
- lockhawkReleased5d agoVersion0.2.7
Fast, free, accurate npm dependency vulnerability scanner for local + CI/CD with an interactive HTML dashboard and SARIF/JUnit output, powered by OSV.dev
- @owf/eudi-scaReleased6d agoVersion0.3.0
Tools and utilities for EUDI Strong Customer Authentication per TS12
- pup-appsecReleased1 week agoVersion0.1.0
Pup — an AI-native, evidence-based application security platform: contextual AI SAST, reachability-based SCA, and threat modelling for JavaScript/TypeScript.
- @patchstack/connectReleased4d agoVersion0.2.6
Patchstack connector for JavaScript applications. Scans your lockfile and reports installed packages to Patchstack for vulnerability monitoring.
- @arcane-spark/ubel-nodeReleasedyesterdayVersion0.6.0
Supply-chain security firewall for Node.js — resolves dependencies, scans via OSV.dev and NVD, and enforces configurable vulnerability policies before anything reaches node_modules.
- oh-my-triageReleased15h agoVersion0.2.0
Open-source, self-hosted, privacy-first MCP-based triage layer for code/security scanner findings
- @zfuzz/cliReleased16h agoVersion0.2.0
Zfuzz security CLI — deterministic SAST, SCA, secret scanning and an MCP server for AI coding agents. Rust-native, sub-second, zero config. Static scanning is free and open source.
- @zfuzz/mcpReleased16h agoVersion0.2.0
Security copilot for your IDE. SAST, SCA, secrets, threat modeling — right where you code. Rust-native, zero config, runs 100% locally.
- @zhuma4/cliReleased19h agoVersion4.0.0-alpha.1
逐码 CLI — 命令行代码安全审计工具 (SAST + SCA)
- supply-chain-mcp-serverReleased5d agoVersion0.1.0
Software supply chain security MCP server — vulnerability scanning, package analysis, provenance verification, typosquatting detection, dependency intelligence across npm, PyPI, crates.io, Go, and more