sbom_scan_vulnerabilities
Cross-reference SBOM components against the OSV.dev vulnerability database to identify known vulnerabilities, with CVE IDs, CVSS scores, severity, and fix recommendations.
Instructions
Cross-reference SBOM components against OSV.dev vulnerability database. Returns CVE IDs, CVSS scores, severity, and fix recommendations. Accepts directory_path (generates fresh) or sbom_path (loads saved artifact).
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| sbom_path | No | Path to existing SBOM file | |
| verbosity | No | Response detail level (default: compact) | |
| directory_path | No | Path to project root (generates fresh SBOM) | |
| severity_threshold | No | Only report vulnerabilities at or above this severity (default: low) |