Audit a CycloneDX or SPDX Software Bill of Materials for known vulnerabilities. Returns CVEs grouped by package with severity and fixed versions.
MIT
205,128 tools. Last updated 2026-06-15 08:46
"A tool for checking Common Vulnerabilities and Exposures (CVEs)" matching MCP tools:
- Scan codebases for security vulnerabilities with deterministic checks and graph-aware severity scoring. Detects CVEs, injection, secrets, XSS, and more, returning prioritized findings with attack scenarios and fixes.Business Source 1.1
- Explains why specific CVEs affect your environment, detailing affected packages and remediation steps to fix vulnerabilities.Apache 2.0
- Retrieve all CVEs affecting a specified system using its UUID. Identify vulnerabilities to prioritize remediation.Apache 2.0
- Check security vulnerabilities and CVEs for packages to support security audits and vulnerability assessments.MIT
- Retrieve a list of CVEs affecting your account with metadata and affected system counts, filterable by score, impact, and exploit status.Apache 2.0
Matching MCP Servers
- AlicenseCqualityFmaintenanceA custom MCP tool that integrates Perplexity AI's API with Claude Desktop, allowing Claude to perform web-based research and provide answers with citations.Last updated16MIT
- Alicense-qualityCmaintenanceSemantic navigator for MCP tools that finds relevant tools by natural language intent, reducing token usage by 95%.Last updated1MIT
Matching MCP Connectors
Give your AI agent a phone. Place outbound calls to US businesses to ask, book, or confirm.
Manage your Canvas coursework with quick access to courses, assignments, and grades. Track upcomin…
- Evaluate CVEs using EPSS scores, CVSS severity, and KEV status to prioritize vulnerabilities for remediation.MIT
- Audit a technology stack for exploitable vulnerabilities. Accepts a comma-separated list of technologies (max 5) and returns risk-sorted critical/high severity CVEs with public exploits.MIT
- Search and filter vulnerabilities using criteria like severity, status, CVSS score, publication date, or keywords to identify security risks in systems.MIT
- Search for vulnerabilities (CVEs) with full-text search and filters for severity, exploit status, CISA KEV, ransomware, and CVSS/EPSS thresholds. Returns exploitation signals and attribution.MIT
- Search the Common Platform Enumeration (CPE) dictionary to find CPE 2.3 URIs for product identifiers used by CVEs. Required before searching CVEs by affected product.MIT
- Lists Common Weakness Enumeration (CWE) categories sorted by number of vulnerabilities. Provides CWE ID, name, label, exploit likelihood, and linked CVEs.MIT
- Scans npm dependencies for known vulnerabilities using the GitHub Advisory Database. Identifies CVEs, severity levels, and patched versions to help secure your project.MIT
- Scan project dependencies for known vulnerabilities using npm audit and the GitHub Advisory Database. Returns CVEs, severity levels, and patched versions to identify security risks.MIT
- Search for CVEs by keyword and filter by severity, exploit availability, CISA KEV status, ransomware, and more to find relevant vulnerabilities with scores and exploitation signals.MIT
- Search for CVEs by product or vendor name using exact keyword matches against the NVD database.MIT
- Retrieves trending CVEs with high exploitation probability, combining EPSS, NVD, and KEV data. Configure limit and minimum EPSS score.MIT
- Scan packages for vulnerabilities and verify registry existence before installation to block CVEs and prevent fake or hallucinated npm and PyPI dependencies.MIT
- Scan dependencies for known CVEs and get safe version recommendations to fix vulnerabilities.MIT
- Retrieve vulnerability issues (CVEs) linked to an action set to track which vulnerabilities are being remediated.MIT