This release includes 1 security fix for security teams reviewing exposed deployments.
Topics
+14 more
Affected surfaces
Summary
AI summaryEnterprise security hardening and bulk fleet sync improvements.
Full changelog
What's Changed
- feat: Snowflake governance discovery — access, privileges, data classification, agent usage by @msaad00 in https://github.com/msaad00/agent-bom/pull/86
- feat: agent activity timeline — QUERY_HISTORY 365-day + AI observability by @msaad00 in https://github.com/msaad00/agent-bom/pull/87
- feat: governance + activity dashboard pages by @msaad00 in https://github.com/msaad00/agent-bom/pull/88
- fix: project hygiene — version bounds, CI checks, docs accuracy by @msaad00 in https://github.com/msaad00/agent-bom/pull/89
- fix: align all docs and metadata with actual capabilities by @msaad00 in https://github.com/msaad00/agent-bom/pull/90
- fix: code freeze alignment — honest docs + visual overhaul by @msaad00 in https://github.com/msaad00/agent-bom/pull/91
- fix: registry versions, NVIDIA advisories, Snowflake fleet sync, MCP attack-flow tags by @msaad00 in https://github.com/msaad00/agent-bom/pull/92
- feat: GHSA enrichment, auto version resolution, Snowflake wiring, lifecycle diagrams by @msaad00 in https://github.com/msaad00/agent-bom/pull/93
- fix: MCP server robustness + real architecture diagrams by @msaad00 in https://github.com/msaad00/agent-bom/pull/94
- fix: restore architecture + snowflake diagrams as proper SVGs by @msaad00 in https://github.com/msaad00/agent-bom/pull/96
- fix: Cortex Code detection + license scanning + binary fallback by @msaad00 in https://github.com/msaad00/agent-bom/pull/97
- fix: GHSA false positives + richer scan output + skill listing by @msaad00 in https://github.com/msaad00/agent-bom/pull/98
- fix: scan accuracy hardening + model card parsing by @msaad00 in https://github.com/msaad00/agent-bom/pull/99
- fix: clean up SVG diagrams — no overlaps, proper routing by @msaad00 in https://github.com/msaad00/agent-bom/pull/100
- feat: bundle dashboard, demo scan, honest README, new tests by @msaad00 in https://github.com/msaad00/agent-bom/pull/101
- feat: mesh upgrade — vuln overlay, filtering, search by @msaad00 in https://github.com/msaad00/agent-bom/pull/102
- fix: false positive reduction + README viz overhaul by @msaad00 in https://github.com/msaad00/agent-bom/pull/103
- fix: enterprise security hardening by @msaad00 in https://github.com/msaad00/agent-bom/pull/104
- feat: proxy payload integrity + allowlist mode by @msaad00 in https://github.com/msaad00/agent-bom/pull/105
- feat: persistent scan cache + scorecard auto-integration by @msaad00 in https://github.com/msaad00/agent-bom/pull/106
- feat: bulk fleet sync + NVD/EPSS persistent caching by @msaad00 in https://github.com/msaad00/agent-bom/pull/107
- feat: enterprise enhancements — 13 features from industry research by @msaad00 in https://github.com/msaad00/agent-bom/pull/108
- fix: align outputs, docs, diagrams with 6-framework / 14-tool state by @msaad00 in https://github.com/msaad00/agent-bom/pull/109
- feat: agent config permissions scanning + v0.36.0 by @msaad00 in https://github.com/msaad00/agent-bom/pull/110
Full Changelog: https://github.com/msaad00/agent-bom/compare/v0.35.0...v0.36.0
Security Fixes
- Enterprise security hardening
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About msaad00/agent-bom
AI supply chain security scanner with 18 MCP tools. Auto-discovers 20 MCP clients, scans dependencies for CVEs (OSV/NVD/EPSS/CISA KEV), maps blast radius from vulnerabilities to exposed credentials and tools, runs CIS benchmarks, generates CycloneDX/SPDX SBOMs, and enforces compliance across OWASP LLM Top 10, MITRE ATLAS, NIST AI RMF, and EU AI Act.
Related context
Related tools
Beta — feedback welcome: [email protected]