agent-bom Scan
Version updated for https://github.com/msaad00/agent-bom to version v0.71.0.
- This action is used across all versions by 0 repositories.
Action Type
This is a Composite action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
Agent-BOM is a security scanning tool designed for AI infrastructure and supply chain management. It automates the discovery, analysis, and enforcement of vulnerabilities (CVEs) across various components such as MCP agents, containers, filesystems, infrastructure, and runtime environments, while providing blast radius analysis to identify impacted tools, credentials, and agents. The action enhances security by integrating real-time vulnerability blocking, compliance checks, and dependency mapping for AI systems.
Release notes
What’s Changed
- fix: repo alignment audit — GIF, proxy syntax, cloud descriptions by @msaad00 in https://github.com/msaad00/agent-bom/pull/856
- feat: agent-bom mcp command group by @msaad00 in https://github.com/msaad00/agent-bom/pull/857
- feat: focused scan commands — image, fs, iac, sbom by @msaad00 in https://github.com/msaad00/agent-bom/pull/858
- feat: agent-bom cloud command group by @msaad00 in https://github.com/msaad00/agent-bom/pull/859
- docs: align README + CLI help with new command structure by @msaad00 in https://github.com/msaad00/agent-bom/pull/860
- feat: scan auto-detects lockfiles + IaC in current directory by @msaad00 in https://github.com/msaad00/agent-bom/pull/862
- docs: update architecture diagram with new CLI structure by @msaad00 in https://github.com/msaad00/agent-bom/pull/863
- chore: bump version to v0.71.0 by @msaad00 in https://github.com/msaad00/agent-bom/pull/866
- docs: v0.71.0 full alignment — frameworks, README, cloud providers by @msaad00 in https://github.com/msaad00/agent-bom/pull/868
- fix: eliminate false positives + scan UX + docs alignment by @msaad00 in https://github.com/msaad00/agent-bom/pull/870
- fix: skip CWD auto-detect when scanning images by @msaad00 in https://github.com/msaad00/agent-bom/pull/873
- fix: production hardening — OCI safety, policy logic, parser robustness by @msaad00 in https://github.com/msaad00/agent-bom/pull/875
Full Changelog: https://github.com/msaad00/agent-bom/compare/v0...v0.71.0