aminet Supply Chain Review

Version updated for https://github.com/gorira-tatsu/aminet to version v0.3.0.

• This action is used across all versions by 0 repositories.

Action Type

This is a Composite action.

Go to the GitHub Marketplace to find the latest changes.

Action Summary

The aminet GitHub Action and CLI tool automate the review of npm and Python dependencies in pull requests by analyzing vulnerability risks, licenses, security signals, and supply chain integrity. It provides actionable feedback via PR comments, terminal output, or structured formats like JSON and SBOMs, helping developers identify and address dependency risks efficiently. Key capabilities include detecting dependency changes, evaluating risks, and enabling customizable workflows for enhanced security and compliance.

Release notes

aminet 0.3.0

npm: https://www.npmjs.com/package/aminet

Install

npx aminet@0.3.0 --help
npm install -g aminet

GitHub Action

uses: gorira-tatsu/aminet@v0.3.0

npmjs.org is the canonical package registry for aminet.

What’s Changed

• chore: add roadmap planning skill by @gorira-tatsu in https://github.com/gorira-tatsu/aminet/pull/30
• chore: add coderabbit repo config by @gorira-tatsu in https://github.com/gorira-tatsu/aminet/pull/31
• chore: add roadmap issue and implementation skills by @gorira-tatsu in https://github.com/gorira-tatsu/aminet/pull/44
• feat: add Python review and roadmap support by @gorira-tatsu in https://github.com/gorira-tatsu/aminet/pull/45

Full Changelog: https://github.com/gorira-tatsu/aminet/compare/v0.2.1...v0.3.0

• gorira-tatsu
• GitHub Actions