jfrog_get_package_info

Retrieve publicly available details about a software package, including its description, latest version, license, version control URL, homepage, and malicious package status. Works with PyPI, npm, Maven, Go, NuGet, Hugging Face, and RubyGems.

Instructions

Useful for when you need to get publicly available information about a software package. it will provide you with the following information on it, if available in public sources: a short description of the package, its latest published version, the software license this software is distributed under, along with urls of its version control system, its homepage and whether it is known to be a malicious package (in any version).

Input Schema

Name	Required	Description	Default
`name`	Yes	The name of the package, as it appears in the package repository.
`type`	Yes	The type of package.
`version`	No	The version of the package, as it appears in the package repository. Default value is 'latest'.	latest

Input Schema (JSON Schema)

{
  "$schema": "http://json-schema.org/draft-07/schema#",
  "additionalProperties": false,
  "properties": {
    "name": {
      "description": "The name of the package, as it appears in the package repository.",
      "type": "string"
    },
    "type": {
      "description": "The type of package.",
      "enum": [
        "pypi",
        "npm",
        "maven",
        "golang",
        "nuget",
        "huggingface",
        "rubygems"
      ],
      "type": "string"
    },
    "version": {
      "default": "latest",
      "description": "The version of the package, as it appears in the package repository. Default value is 'latest'.",
      "type": "string"
    }
  },
  "required": [
    "type",
    "name"
  ],
  "type": "object"
}

JFrog MCP Server