agent-bom Scan
Version updated for https://github.com/msaad00/agent-bom to version v0.75.10.
- This action is used across all versions by 0 repositories.
Action Type
This is a Composite action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
Agent-bom is a security-focused GitHub Action designed to analyze and map the vulnerability impact (blast radius) of AI agents and their dependencies within developer environments. It identifies CVEs, exposed credentials, and at-risk tools by scanning AI agents, MCP servers, packages, container images, infrastructure code, and cloud AI resources, providing actionable insights to mitigate security risks. Its key capability lies in connecting vulnerabilities to runtime risks, such as credential leaks and tool exposure, offering a comprehensive view of supply chain security in AI-driven workflows.
Release notes
What’s Changed
- Refresh stale 0.75.9 demo asset by @msaad00 in https://github.com/msaad00/agent-bom/pull/1107
- Stabilize requests and UI dependency advisories by @msaad00 in https://github.com/msaad00/agent-bom/pull/1108
- Tighten final 0.75.10 stability edges by @msaad00 in https://github.com/msaad00/agent-bom/pull/1109
- chore(deps): bump cryptography from 46.0.5 to 46.0.6 by @dependabot[bot] in https://github.com/msaad00/agent-bom/pull/1110
- Harden runtime stdin and Slack delivery reporting by @msaad00 in https://github.com/msaad00/agent-bom/pull/1111
- Polish release surfaces and fix offline demo DB path by @msaad00 in https://github.com/msaad00/agent-bom/pull/1112
- Polish hero demo and release positioning by @msaad00 in https://github.com/msaad00/agent-bom/pull/1113
- Align release-facing surfaces before 0.75.10 by @msaad00 in https://github.com/msaad00/agent-bom/pull/1114
- chore: release 0.75.10 by @msaad00 in https://github.com/msaad00/agent-bom/pull/1115
Full Changelog: https://github.com/msaad00/agent-bom/compare/v0...v0.75.10