agent-bom Scan

Version updated for https://github.com/msaad00/agent-bom to version v0.76.2.

• This action is used across all versions by 0 repositories.

Action Type

This is a Composite action.

Go to the GitHub Marketplace to find the latest changes.

Action Summary

agent-bom is an open-source security scanner designed to analyze the AI supply chain, including agents, MCP servers, packages, containers, cloud infrastructure, GPUs, and runtime environments. It automates the identification of vulnerabilities, misconfigurations, and exposed credentials, providing actionable insights such as blast radius analysis and prioritized remediation plans. Key capabilities include scanning for CVEs, auditing dependencies, generating fix plans, assessing cloud posture, and enabling runtime inspection, all supported by a dashboard for persistent and unified findings.

What’s Changed

What’s Changed

• fix: ingest Alpine secdb and prepare 0.76.2 by @msaad00 in https://github.com/msaad00/agent-bom/pull/1332

Full Changelog: https://github.com/msaad00/agent-bom/compare/v0...v0.76.2

• msaad00
• GitHub Actions