scan_dependencies
Scan application dependencies for known CVEs using manifest files or custom input. Returns only vulnerable packages.
Instructions
Bulk scan application dependencies for known CVEs via OSV.dev. Supports requirements.txt (PyPI), package.json (npm), pom.xml (Maven), or generic 'name:ecosystem:version' lines. Returns only vulnerable packages.
Args: dependency_list: Raw contents of requirements.txt, package.json, pom.xml, or newline-separated 'name:ecosystem:version' entries. Max 1000 packages per call.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| dependency_list | Yes |
Output Schema
| Name | Required | Description | Default |
|---|---|---|---|
| result | Yes |