sbom
- @nuguardai/nuguardReleased3d agoVersion0.8.2
AI Application Security — SBOM generation, static analysis, behavioral validation, and adversarial red-team testing for AI agents and LLM-powered applications.
- @datanexusmcp/mcp-serverReleased2d agoVersion2.4.12
DataNexus MCP — AI-Ready public data intelligence. 55 tools: CVE risk verdicts, SBOM licence policy, frontend security (manifest audit, CI scanner, typosquatting), licence compatibility, nonprofit 990 trends, SBOM monitoring, federal contracts, NPI lookup
- @cyclonedx/cdxgenReleased4d agoVersion12.7.0
Creates CycloneDX Software Bill of Materials (SBOM) from source or container image
- supply-chain-guardReleased7h agoVersion5.2.42
Open-source supply-chain security scanner for npm, PyPI, Cargo, Go, Docker, VS Code extensions, GitHub Actions, IaC and Solana C2. Detects GlassWorm, Shai-Hulud, PPE attacks, dependency confusion and 120+ malware indicators. Generates CycloneDX 1.6 SBOMs
- @peac/mappings-slsaReleased18h agoVersion0.16.1
SLSA v1.2 provenance mapping for PEAC provenance extension
- @peac/mappings-intotoReleased18h agoVersion0.16.1
in-toto v1.0 attestation mapping for PEAC provenance extension
- @arcane-spark/ubel-nodeReleasedyesterdayVersion0.6.0
Supply-chain security firewall for Node.js — resolves dependencies, scans via OSV.dev and NVD, and enforces configurable vulnerability policies before anything reaches node_modules.
- @safedep/cliReleased5d agoVersion0.2.0
SafeDep CLI: open source software supply chain security
- @ecosyste-ms/criticalReleased4h agoVersion1.1.20260629
SQLite database of critical packages from ecosyste.ms
- @createiq/virus-scanner-licensesReleased5d agoVersion1.0.26
Automatically generated OSS license information from SBOM.
- @stackwright-pro/sbom-enterpriseReleased19h agoVersion0.3.0-alpha.16
Enterprise SBOM features for Stackwright - CVE enrichment, signing, SLSA provenance, and registry publishing
- @cyclonedx/bomReleased3 months agoVersion4.1.5
Meta-package for known CycloneDX Software Bill of Materials (SBOM) generators
- @dpopsuev/alef-coding-agentReleased3d agoVersion1.0.0
The default Alef coding agent blueprint. This package IS the SBOM — dependencies are the organ manifest.
- @createiq/backend-licensesReleased4d agoVersion1.0.40
Automatically generated OSS license information from SBOM.
- @createiq/frontend-licensesReleased5d agoVersion1.0.80
Automatically generated OSS license information from SBOM.
- @supernova123/security-scanner-mcp-serverReleased6d agoVersion0.1.1
Multi-engine container & system vulnerability scanning for AI agents. Wraps Trivy and Grype with cross-engine validation, SBOM generation, and IaC misconfiguration scanning.