Supply Chain Security

SBOM generation, software signing, policy-as-code, and dependency vulnerability scanning.

All Breaking Security Features

Important Recent

← Releases

Review required

miracodeai/mira v0.2.1 New feature 1d

Dependencies

AWS Bedrock support

Open

Review required

msaad00/agent-bom v0.88.5 New feature 2d

Auth RBAC Breaking upgrade

UI, onboarding, gateway, findings, observability, graph, hardening, deps, runtime

Open

Review required

qwexvf/aegis-cli v0.28.0 New feature 3d

Dependencies

@qwexvf CLI, registry, AST, heuristics, docs

Open

Review required

gebalamariusz/cloud-audit v2.3.1 New feature 8d

Auth RBAC Dependencies

DynamoDB checks + S3 validation + Config hardening

Open

v2.3.0 (9d) Blast Radius CLI + exposure

Review required

msaad00/agent-bom v0.88.3 New feature 10d

Auth Dependencies

mcp, intel, sdk, api, connectors

Open

Review required

ErenAri/Aegis-BPF v0.8.0 New feature 10d

Auth RBAC Dependencies

Ed25519 signing, CEF format, rule library, BTFhub download

Open

No immediate action

pentest-ai v0.15.3 New feature 14d

Budget default increase

Open

v0.15.2 (14d) Auth inheritance in MCP calls

v0.15.0 (14d) Safety flags + bearer auth

No immediate action

msaad00/agent-bom v0.87.1 New feature 16d

runtime, api, intel, ci, product

Open

No immediate action

qwexvf/aegis-cli v0.27.0 New feature 17d

SBOM + Lua AST scanner

Open

v0.26.0 (17d) AST scan + lockfile extraction

v0.20.0 (20d) Licensefetch + heuristics

v0.19.0 (20d) New ecosystems + cloud analysis

Upgrade now

goklab/guardvibe v3.1.23 New feature 20d

Dependencies Breaking upgrade

dep-CVE rules + dependency hygiene

Open

Review required

qwexvf/aegis-cli v0.18.0 New feature 21d

Dependencies

--cdx-version + license extraction

Open

No immediate action

pentest-ai v0.14.0 New feature 21d

Plan/ensure tools, expanded agent loop, smart install

Open

No immediate action

squid-protocol/gitgalaxy](https: 2.2.0 New feature 22d

443‑test validation matrix

Open

Review required

gebalamariusz/cloud-audit v2.2.0 New feature 22d

Auth RBAC

Threat Feed v1

Open

Review required

qwexvf/aegis-cli v0.16.0 New feature 22d

Auth RBAC RCE / SSRF

SARIF output

Open

v0.15.1 (23d) Per‑PM release archives

v0.15.0 (23d) Maintainer‑transfer + drift detector

Review required

ErenAri/Aegis-BPF v0.6.0 New feature 25d

Auth RBAC

Hook fix + simulation + CEF + packaging

Open

No immediate action

qwexvf/aegis-cli v0.14.0 New feature 26d

Gleam/Hex support

Open

v0.12.0 (28d) Java + PHP scanners + lockfile parsers

v0.11.0 (28d) Go & Rust AST scanners

v0.10.0 (28d) Ruby AST scanner + local analysis

No immediate action

msaad00/agent-bom v0.86.1 New feature 28d

Gateway guard hardening

Open

Review required

qwexvf/aegis-cli v0.9.0 New feature 28d

Dependencies

Multi‑language scans + typosquat detection

Open