agent-bom Scan

Version updated for https://github.com/msaad00/agent-bom to version v0.31.5.

• This action is used across all versions by ? repositories.

Action Type

This is a Composite action.

Go to the GitHub Marketplace to find the latest changes.

Action Summary

The “agent-bom” GitHub Action is an AI-focused Bill of Materials generator designed to automate the discovery and analysis of vulnerabilities (CVEs) in AI agents and MCP servers. It maps the blast radius of security risks, identifies exposed credentials, analyzes attacker tool access, detects privilege issues, and provides enterprise-level remediation insights. By integrating frameworks like OWASP LLM Top 10, MITRE ATLAS, and NIST AI RMF, it equips users with actionable insights to manage and mitigate risks in AI systems effectively, addressing gaps in traditional vulnerability scanners.

Release notes

What’s Changed

• feat: v0.31.5 — supply chain visualization + Docker hardening by @msaad00 in https://github.com/msaad00/agent-bom/pull/21

Full Changelog: https://github.com/msaad00/agent-bom/compare/v0.31.4...v0.31.5

• msaad00
• GitHub Actions