seanhalberthal/supplyscan
3.2
If you are the rightful owner of supplyscan and would like to certify it and/or have it hosted online, please leave a comment on the right or send an email to dayong@mcphub.com.
SupplyScan-MCP is a Go-based server designed to scan JavaScript ecosystem lockfiles for supply chain compromises and known vulnerabilities.
Tools
Functions exposed to the LLM to take actions
supplyscan_status
Get scanner version, IOC database info, and supported lockfile formats.
supplyscan_scan
Scan a project directory for supply chain compromises and known vulnerabilities.
supplyscan_check
Check a single package@version for supply chain compromises and vulnerabilities.
supplyscan_refresh
Update the IOC database from upstream sources.
Prompts
Interactive templates invoked by user choice
No prompts
Resources
Contextual data attached and managed by the client