This release keeps dependencies and maintenance posture current for teams operating this tool.
✓ No known CVEs patched in this version
Topics
+14 more
Summary
AI summaryMinor fixes and improvements.
Full changelog
What's Changed
- Refresh stale 0.75.9 demo asset by @msaad00 in https://github.com/msaad00/agent-bom/pull/1107
- Stabilize requests and UI dependency advisories by @msaad00 in https://github.com/msaad00/agent-bom/pull/1108
- Tighten final 0.75.10 stability edges by @msaad00 in https://github.com/msaad00/agent-bom/pull/1109
- chore(deps): bump cryptography from 46.0.5 to 46.0.6 by @dependabot[bot] in https://github.com/msaad00/agent-bom/pull/1110
- Harden runtime stdin and Slack delivery reporting by @msaad00 in https://github.com/msaad00/agent-bom/pull/1111
- Polish release surfaces and fix offline demo DB path by @msaad00 in https://github.com/msaad00/agent-bom/pull/1112
- Polish hero demo and release positioning by @msaad00 in https://github.com/msaad00/agent-bom/pull/1113
- Align release-facing surfaces before 0.75.10 by @msaad00 in https://github.com/msaad00/agent-bom/pull/1114
- chore: release 0.75.10 by @msaad00 in https://github.com/msaad00/agent-bom/pull/1115
Full Changelog: https://github.com/msaad00/agent-bom/compare/v0...v0.75.10
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About msaad00/agent-bom
AI supply chain security scanner with 18 MCP tools. Auto-discovers 20 MCP clients, scans dependencies for CVEs (OSV/NVD/EPSS/CISA KEV), maps blast radius from vulnerabilities to exposed credentials and tools, runs CIS benchmarks, generates CycloneDX/SPDX SBOMs, and enforces compliance across OWASP LLM Top 10, MITRE ATLAS, NIST AI RMF, and EU AI Act.
Related context
Related tools
Beta — feedback welcome: [email protected]