MCP Server Proto-OKN

SecureChain KG is a large-scale knowledge graph that maps software components and vulnerabilities across multiple programming languages to strengthen software supply chain security. Built for developers, security analysts, and policymakers, it contains 9.8 million entities capturing 803,769 software packages, 8.6 million software versions, 259,806 vulnerabilities, and 53,378 hardware components with their versions, interconnected through 73.5 million triples. The ontology models dependencies between software versions and other components through properties like sc:dependsOn, which help assess potential risks and identify vulnerabilities, with links to licenses ensuring compliance across the supply chain. Dominated by PyPI (603K packages) and Cargo (180K packages) ecosystems, SecureChain primarily covers Python and Rust software. Continuously updated through neural knowledge acquisition pipelines that extract information from documentation, CVEs, bug reports, and online discussions, it provides a real-time view of software supply chain risks.