Search results
85 packages found
Sort by: Default
- Default
- Most downloaded this week
- Most downloaded this month
- Most dependents
- Recently published
Evidence-driven repo intelligence: DORA metrics, forensic signals, vulnerability scan, and delivery verdict for any GitHub repo. One command, no setup.
- dora
- dora-metrics
- devops
- metrics
- github
- ci-cd
- deployment-frequency
- lead-time
- change-failure-rate
- mean-time-to-restore
- mttr
- vulnerability
- osv
- cli
- View more
OSV vulnerability scanner for Bun projects
Audit Yarn v1 lockfiles against the OSV vulnerability database
Developer-friendly CLI for scanning JS/TS projects for dependency vulnerabilities using local lockfiles and OSV
Vulnerability scanner for Bun projects
Audit, secure, and clean up package manager overrides for npm, pnpm, Yarn, and Bun.
- bun
- cve
- dependencies
- dependency-management
- dependency-overrides
- devsecops
- github-actions
- monorepo
- osv
- overrides
- pnpm
- resolutions
- security
- supply-chain-security
In-app dev companion for React. Floating button + drawer with viewport switcher, route map, SEO/Performance/Tracker checks and dependency vulnerability scanning. Zero config in dev, invisible in production.
- react
- vite
- nextjs
- devtools
- dev-mode
- preview
- responsive
- seo
- performance
- web-vitals
- trackers
- google-analytics
- meta-pixel
- vulnerabilities
- View more
DataNexus MCP — AI-Ready public data intelligence. 55 tools: CVE risk verdicts, SBOM licence policy, frontend security (manifest audit, CI scanner, typosquatting), licence compatibility, nonprofit 990 trends, SBOM monitoring, federal contracts, NPI lookup
- mcp
- model-context-protocol
- ai
- public-data
- open-data
- nonprofit
- irs
- ein
- charity
- vulnerability
- cve
- sbom
- nist
- osv
- View more
OpenCodeHub — Priority-1 scanner wrappers (semgrep, betterleaks, osv-scanner, bandit, biome)
- opencodehub
- code-intelligence
- mcp
- model-context-protocol
- ai
- code-graph
- static-analysis
- scanners
- semgrep
- osv
- security
- sast
Scan ALL Maven, npm, Yarn, Composer, Python, C#/.NET, Go & Ruby dependencies — plus embedded JARs (fat-jars/war/ear) — in a source tree ONE SHOT without mvn/python/etc — CVE (EPSS/KEV-prioritised), EOL, obsolete, outdated & licenses, with SBOM/CSAF/SARIF/
- sca
- software-composition-analysis
- dependency-scanner
- vulnerability-scanner
- security
- cve
- osv
- nvd
- epss
- kev
- cyclonedx
- sbom
- csaf
- vex
- View more
Dependency install safety gate with OSV-backed advisory checks, approved-spec ledger enforcement, and reorg rollback hooks
IRM key exchange module for Open Secure Viewer — RSA-4096 + AES-GCM WebCrypto
- irm
- information-rights-management
- drm
- document-security
- webcrypto
- key-exchange
- rsa
- rsa-4096
- aes
- aes-gcm
- secure-pdf
- encrypted-document
- osv
React components and hooks for @open-secure-viewer/core secure PDF/Office viewer. Drop-in replacement for Apryse WebViewer React integration.
- react
- react-pdf
- pdf-viewer
- pdf-component
- secure-pdf
- secure-pdf-viewer
- pdfium
- wasm
- watermark
- annotation
- react-component
- react-hook
- apryse-alternative
Standalone, zero-dependency CLI for npm supply chain security analysis — vulnerability scanning, OpenSSF Scorecard, install-script detection, publisher history, and more.
One-command security scanner for AI-generated code. Vibe coded. Vibe hardened.
- security
- scanner
- ai
- vibe-coding
- ai-coding
- ai-generated-code
- vulnerability
- cli
- secrets
- secret-detection
- static-analysis
- linter
- pre-commit
- github-action
- View more
React hooks for the OSV (Open Source Vulnerabilities) API, built on @tanstack/react-query
DOCX and XLSX renderers for @open-secure-viewer/core. Powered by docx-preview and SheetJS.
- docx
- docx-viewer
- xlsx
- xlsx-viewer
- office
- office-viewer
- word
- excel
- spreadsheet
- csv
- sheetjs
- docx-preview
- secure-office-viewer
- osv
Supply-chain security firewall for Node.js — resolves dependencies, scans via OSV.dev and NVD, and enforces configurable vulnerability policies before anything reaches node_modules.
Nexus Dependency Auditor — OSV CVE scanning, offline cache, supply chain risk analysis, and build-time blocking
Query OSV.dev for package vulnerabilities, batch-audit dependency lists, and fetch full advisory records via MCP. STDIO or Streamable HTTP.
- mcp
- mcp-server
- model-context-protocol
- typescript
- bun
- stdio
- streamable-http
- osv
- osv-dev
- vulnerability
- advisory
- security
- cve
- sbom
- View more