agent-security-scanner-mcp 4.1.0 → 4.1.1

package/README.md

@@ -63,6 +63,8 @@ Continue reading below for full version documentation →
 
 ---
 
+> **New in v4.1.0:** SBOM generation and dependency vulnerability analysis — generates CycloneDX v1.5 SBOMs, scans against OSV.dev for CVEs, detects hallucinated packages, compares baselines, and generates HTML audit reports. Supports 8 lock file formats and 7 manifest formats across npm, Python, Go, Rust, Ruby, and Java ecosystems. [See SBOM Tools](#-sbom--supply-chain-analysis-new-in-v410).
+>
 > **New in v4.0.0:** LLM-powered semantic code review agent with intent profiling — understands what your project is supposed to do and flags patterns that violate that intent. Same `eval()` call = safe in a build tool, dangerous in an e-commerce app. Supports Claude CLI (no API key needed!), Anthropic, and OpenAI. [See code-review-agent](#-llm-powered-code-review-agent-new-in-v400).
 >
 > **New in v3.11.0:** ClawHub ecosystem security scanning — scanned all 16,532 ClawHub skills and found 46% have critical vulnerabilities. New `scan-clawhub` CLI for batch scanning, 40+ prompt injection patterns, jailbreak detection (DAN mode, dev mode), data exfiltration checks. [See ClawHub Security Dashboard](https://www.proof-layer.com/dashboard).
@@ -87,6 +89,11 @@ Continue reading below for full version documentation →
 | `scan_skill` | Deep security scan of an OpenClaw skill: prompt injection, AST+taint code analysis, ClawHavoc malware signatures, supply chain, rug pull. Returns A-F grade | Before installing any OpenClaw skill |
 | `scanner_health` | Check plugin health: engine status, daemon status, package data availability | Diagnostics and plugin status |
 | `list_security_rules` | List available security rules and fix templates | To check rule coverage for a language |
+| `sbom_generate` | Generate CycloneDX v1.5 SBOM for a project (8 lock file formats, 7 manifest formats) | Before releases, for compliance audits |
+| `sbom_scan_vulnerabilities` | Cross-reference SBOM against OSV.dev for CVEs with severity filtering | After generating SBOM, for security audits |
+| `sbom_check_hallucinations` | Verify all SBOM packages exist in official registries | Before deploying, to catch AI-invented packages |
+| `sbom_diff` | Compare current SBOM against baseline, detect added/removed/changed packages | In CI/CD to track dependency drift |
+| `sbom_export_report` | Generate HTML or JSON audit report from SBOM with vulnerability data | For PCI-DSS compliance, security reviews |
 
 ## Quick Start
 
@@ -243,6 +250,180 @@ npx cr-agent analyze ./path/to/project -f sarif -p claude-cli
 
 ---
 
+## 📦 SBOM / Supply Chain Analysis (New in v4.1.0)
+
+Generate Software Bill of Materials (SBOM) and analyze dependencies for vulnerabilities across your entire supply chain.
+
+### Quick Start
+
+```bash
+# Generate SBOM for current project
+npx agent-security-scanner-mcp sbom-generate .
+
+# Scan for vulnerabilities against OSV.dev
+npx agent-security-scanner-mcp sbom-vulnerabilities .
+
+# Check for hallucinated packages
+npx agent-security-scanner-mcp sbom-check-hallucinations .
+
+# Compare against baseline (CI/CD)
+npx agent-security-scanner-mcp sbom-diff . --save-baseline  # First run
+npx agent-security-scanner-mcp sbom-diff .                  # Subsequent runs
+
+# Generate HTML audit report
+npx agent-security-scanner-mcp sbom-report . --format html
+```
+
+### Supported Ecosystems
+
+| Ecosystem | Lock Files | Manifests | CLI Fallback |
+|-----------|------------|-----------|--------------|
+| **npm** | package-lock.json (v2/v3), yarn.lock (classic/berry), pnpm-lock.yaml | package.json | `npm ls`, `pnpm list` |
+| **Python** | poetry.lock, Pipfile.lock | requirements.txt, pyproject.toml | — |
+| **Go** | go.sum | go.mod | `go list` |
+| **Rust** | Cargo.lock | — | `cargo metadata` |
+| **Ruby** | Gemfile.lock | Gemfile | — |
+| **Java** | — | pom.xml, build.gradle | `mvn dependency:tree` |
+
+### SBOM Tools
+
+#### `sbom_generate`
+
+Generate a CycloneDX v1.5 SBOM for a project. Discovers all dependencies (direct + transitive) from lock files and manifests.
+
+```json
+// Input
+{ "directory_path": "./my-project", "verbosity": "compact" }
+
+// Output
+{
+  "total_components": 212,
+  "direct": 20,
+  "dev": 91,
+  "ecosystems": ["npm", "pypi"],
+  "components": [
+    { "name": "express", "version": "4.18.2", "ecosystem": "npm", "isDirect": true }
+  ]
+}
+```
+
+#### `sbom_scan_vulnerabilities`
+
+Cross-reference SBOM components against OSV.dev vulnerability database. Returns CVE IDs, CVSS scores, severity, and fix recommendations.
+
+```json
+// Input
+{ "directory_path": "./my-project", "severity_threshold": "medium" }
+
+// Output
+{
+  "total_vulnerabilities": 3,
+  "by_severity": { "critical": 1, "high": 1, "medium": 1 },
+  "vulnerabilities": [
+    {
+      "id": "GHSA-xxxx-yyyy-zzzz",
+      "package": "lodash",
+      "severity": "critical",
+      "cvss": 9.8,
+      "fixed_version": "4.17.21"
+    }
+  ]
+}
+```
+
+#### `sbom_check_hallucinations`
+
+Check all packages in an SBOM against official registries to detect AI-invented package names.
+
+```json
+// Input
+{ "directory_path": "./my-project" }
+
+// Output
+{
+  "total_checked": 212,
+  "hallucinated_count": 1,
+  "unsupported_ecosystems": ["go", "java"],
+  "hallucinated": [
+    { "name": "react-async-utils-helper", "ecosystem": "npm" }
+  ]
+}
+```
+
+#### `sbom_diff`
+
+Compare current project SBOM against a stored baseline. Detects added, removed, and version-changed packages.
+
+```json
+// Input (first run)
+{ "directory_path": "./my-project", "save_baseline": true }
+
+// Output
+{ "message": "Baseline saved to .scanner/sbom-baseline.json" }
+
+// Input (subsequent runs)
+{ "directory_path": "./my-project" }
+
+// Output
+{
+  "added": [{ "name": "lodash", "version": "4.17.21", "ecosystem": "npm" }],
+  "removed": [],
+  "changed": [{ "name": "express", "from": "4.17.1", "to": "4.18.2" }]
+}
+```
+
+#### `sbom_export_report`
+
+Generate an HTML or JSON audit report from SBOM data, optionally enriched with vulnerability scan results.
+
+```json
+// Input
+{
+  "directory_path": "./my-project",
+  "format": "html",
+  "include_vulnerabilities": true,
+  "output_path": "./sbom-report.html"
+}
+
+// Output
+{
+  "report_path": "./sbom-report.html",
+  "components": 212,
+  "vulnerabilities": 3
+}
+```
+
+### CLI Commands
+
+```bash
+# Generate SBOM
+sbom-generate <dir> [--save] [--output <path>] [--verbosity minimal|compact|full]
+
+# Scan vulnerabilities
+sbom-vulnerabilities <dir> [--sbom-path <path>] [--verbosity minimal|compact|full]
+
+# Check hallucinations
+sbom-check-hallucinations <dir> [--verbosity minimal|compact|full]
+
+# Compare baseline
+sbom-diff <dir> [--save-baseline] [--baseline-path <path>] [--verbosity minimal|compact|full]
+
+# Generate report
+sbom-report <dir> [--format html|json] [--output <path>] [--no-vulnerabilities]
+```
+
+### Features
+
+- **CycloneDX v1.5 JSON** — Industry-standard SBOM format
+- **OSV.dev Integration** — Real-time vulnerability data with 24-hour local cache
+- **Multi-Ecosystem** — Single scan discovers dependencies across all package managers
+- **Direct vs Transitive** — Distinguishes direct dependencies from transitive ones
+- **Dev Dependencies** — Optionally include/exclude development dependencies
+- **Baseline Comparison** — Track dependency drift over time
+- **HTML Reports** — Visual dashboard with severity charts for compliance audits
+
+---
+
 ## Tool Reference
 
 ### `scan_security`
@@ -1158,7 +1339,7 @@ AI coding agents introduce attack surfaces that traditional security tools weren
 |----------|-------|
 | **Transport** | stdio |
 | **Package** | `agent-security-scanner-mcp` (npm) |
-| **Tools** | 12 |
+| **Tools** | 17 |
 | **Languages** | 12 |
 | **Ecosystems** | 7 |
 | **Auth** | None required |
@@ -1240,6 +1421,22 @@ All MCP tools support a `verbosity` parameter to minimize context window consump
 
 ## Changelog
 
+### v4.1.0 (2026-03-27) - SBOM Generation & Vulnerability Analysis
+
+**🚀 New Feature: Software Bill of Materials (SBOM)**
+
+- **5 New MCP Tools:** `sbom_generate`, `sbom_scan_vulnerabilities`, `sbom_check_hallucinations`, `sbom_diff`, `sbom_export_report`
+- **CycloneDX v1.5:** Industry-standard SBOM format output
+- **8 Lock File Parsers:** package-lock.json (v2/v3), yarn.lock (classic/berry), pnpm-lock.yaml, poetry.lock, Pipfile.lock, Cargo.lock, go.sum, Gemfile.lock
+- **7 Manifest Parsers:** package.json, requirements.txt, pyproject.toml, go.mod, Gemfile, pom.xml, build.gradle
+- **CLI Fallbacks:** npm ls, pnpm list, cargo metadata, go list, mvn dependency:tree
+- **OSV.dev Integration:** Real-time vulnerability database with 24-hour local cache
+- **Baseline Comparison:** Track dependency drift with save/compare workflow
+- **HTML Reports:** Visual dashboard with severity charts for compliance
+- **86 New Tests:** Comprehensive coverage across all SBOM features
+
+---
+
 ### v4.0.0 (2026-03-21) - LLM-Powered Code Review Agent
 
 **🚀 Major Release: LLM-Powered Semantic Code Review**

package/index.js

@@ -28,6 +28,11 @@ import { runInitHooks } from './src/cli/init-hooks.js';
 import { runReport } from './src/cli/report.js';
 import { scoreAivssSchema, scoreAivssTool } from './src/tools/score-aivss.js';
 import { complianceControlsSchema, getComplianceControls } from './src/tools/compliance-controls.js';
+import { sbomGenerateSchema, sbomGenerate } from './src/tools/sbom-generate.js';
+import { sbomVulnerabilitiesSchema, sbomScanVulnerabilities } from './src/tools/sbom-vulnerabilities.js';
+import { sbomHallucinationsSchema, sbomCheckHallucinations } from './src/tools/sbom-hallucinations.js';
+import { sbomDiffSchema, sbomDiff } from './src/tools/sbom-diff.js';
+import { sbomReportSchema, sbomExportReport } from './src/tools/sbom-report.js';
 
 // Handle both ESM and CJS bundling (Smithery bundles to CJS)
 let __dirname;
@@ -252,6 +257,45 @@ server.tool(
   getComplianceControls
 );
 
+// ===========================================
+// SBOM / SUPPLY CHAIN ANALYSIS
+// ===========================================
+
+server.tool(
+  "sbom_generate",
+  "Generate a CycloneDX v1.5 SBOM for a project. Discovers all dependencies (direct + transitive) from lock files and manifests across Node.js, Python, Go, Rust, Ruby, Java. Use verbosity='minimal' for counts, 'compact' (default) for component list, 'full' for complete CycloneDX JSON.",
+  sbomGenerateSchema,
+  sbomGenerate
+);
+
+server.tool(
+  "sbom_scan_vulnerabilities",
+  "Cross-reference SBOM components against OSV.dev vulnerability database. Returns CVE IDs, CVSS scores, severity, and fix recommendations. Accepts directory_path (generates fresh) or sbom_path (loads saved artifact).",
+  sbomVulnerabilitiesSchema,
+  sbomScanVulnerabilities
+);
+
+server.tool(
+  "sbom_check_hallucinations",
+  "Check all packages in an SBOM against official registries to detect hallucinated (AI-invented) package names. Supports npm, pypi, rubygems, dart, perl, raku, crates. Go/Java marked as unsupported.",
+  sbomHallucinationsSchema,
+  sbomCheckHallucinations
+);
+
+server.tool(
+  "sbom_diff",
+  "Compare current project SBOM against a stored baseline. Reports added, removed, and version-changed packages. Use save_baseline=true to create initial baseline.",
+  sbomDiffSchema,
+  sbomDiff
+);
+
+server.tool(
+  "sbom_export_report",
+  "Generate an HTML or JSON audit report from SBOM data, optionally enriched with vulnerability scan results. Suitable for PCI-DSS and compliance audits.",
+  sbomReportSchema,
+  sbomExportReport
+);
+
 // ===========================================
 // CLI COMMANDS - Extracted to src/cli/
 // ===========================================
@@ -524,6 +568,95 @@ const cliArgs = process.argv.slice(2);
     console.error(`  Error: ${err.message}\n`);
     process.exit(1);
   });
+} else if (cliArgs[0] === 'sbom-generate') {
+  const dirPath = cliArgs[1] || '.';
+  const verbosityIdx = cliArgs.indexOf('--verbosity');
+  const verbosity = verbosityIdx !== -1 ? cliArgs[verbosityIdx + 1] : 'compact';
+  const save = cliArgs.includes('--save');
+  const outIdx = cliArgs.indexOf('--output');
+  const outputPath = outIdx !== -1 ? cliArgs[outIdx + 1] : (save ? join(dirPath, '.scanner', 'sbom.json') : undefined);
+
+  sbomGenerate({ directory_path: dirPath, output_path: outputPath, verbosity }).then(result => {
+    const output = JSON.parse(result.content[0].text);
+    console.log(JSON.stringify(output, null, 2));
+    process.exit(0);
+  }).catch(err => {
+    console.error(JSON.stringify({ error: err.message }));
+    process.exit(1);
+  });
+} else if (cliArgs[0] === 'sbom-vulnerabilities') {
+  const dirPath = cliArgs[1] || '.';
+  const verbosityIdx = cliArgs.indexOf('--verbosity');
+  const verbosity = verbosityIdx !== -1 ? cliArgs[verbosityIdx + 1] : 'compact';
+  const sbomIdx = cliArgs.indexOf('--sbom-path');
+  const sbomPath = sbomIdx !== -1 ? cliArgs[sbomIdx + 1] : undefined;
+
+  sbomScanVulnerabilities({
+    directory_path: sbomPath ? undefined : dirPath,
+    sbom_path: sbomPath,
+    verbosity,
+  }).then(result => {
+    const output = JSON.parse(result.content[0].text);
+    console.log(JSON.stringify(output, null, 2));
+    process.exit(output.total_vulnerabilities > 0 ? 1 : 0);
+  }).catch(err => {
+    console.error(JSON.stringify({ error: err.message }));
+    process.exit(1);
+  });
+} else if (cliArgs[0] === 'sbom-check-hallucinations') {
+  const dirPath = cliArgs[1] || '.';
+  const verbosityIdx = cliArgs.indexOf('--verbosity');
+  const verbosity = verbosityIdx !== -1 ? cliArgs[verbosityIdx + 1] : 'compact';
+
+  loadPackageLists();
+  sbomCheckHallucinations({ directory_path: dirPath, verbosity }).then(result => {
+    const output = JSON.parse(result.content[0].text);
+    console.log(JSON.stringify(output, null, 2));
+    process.exit(output.hallucinated_count > 0 ? 1 : 0);
+  }).catch(err => {
+    console.error(JSON.stringify({ error: err.message }));
+    process.exit(1);
+  });
+} else if (cliArgs[0] === 'sbom-diff') {
+  const dirPath = cliArgs[1] || '.';
+  const verbosityIdx = cliArgs.indexOf('--verbosity');
+  const verbosity = verbosityIdx !== -1 ? cliArgs[verbosityIdx + 1] : 'compact';
+  const saveBaseline = cliArgs.includes('--save-baseline');
+  const baselineIdx = cliArgs.indexOf('--baseline-path');
+  const baselinePath = baselineIdx !== -1 ? cliArgs[baselineIdx + 1] : undefined;
+
+  sbomDiff({ directory_path: dirPath, baseline_path: baselinePath, save_baseline: saveBaseline, verbosity }).then(result => {
+    const output = JSON.parse(result.content[0].text);
+    console.log(JSON.stringify(output, null, 2));
+    process.exit(0);
+  }).catch(err => {
+    console.error(JSON.stringify({ error: err.message }));
+    process.exit(1);
+  });
+} else if (cliArgs[0] === 'sbom-report') {
+  const dirPath = cliArgs[1] || '.';
+  const verbosityIdx = cliArgs.indexOf('--verbosity');
+  const verbosity = verbosityIdx !== -1 ? cliArgs[verbosityIdx + 1] : 'compact';
+  const formatIdx = cliArgs.indexOf('--format');
+  const format = formatIdx !== -1 ? cliArgs[formatIdx + 1] : 'html';
+  const outIdx = cliArgs.indexOf('--output');
+  const outputPath = outIdx !== -1 ? cliArgs[outIdx + 1] : join(dirPath, '.scanner', 'sbom-report.html');
+  const noVulns = cliArgs.includes('--no-vulnerabilities');
+
+  sbomExportReport({
+    directory_path: dirPath,
+    format,
+    include_vulnerabilities: !noVulns,
+    output_path: outputPath,
+    verbosity,
+  }).then(result => {
+    const output = JSON.parse(result.content[0].text);
+    console.log(JSON.stringify(output, null, 2));
+    process.exit(0);
+  }).catch(err => {
+    console.error(JSON.stringify({ error: err.message }));
+    process.exit(1);
+  });
 } else if (cliArgs[0] === 'scan-clawhub') {
   // Import and run SAFE ClawHub scanner (no code execution)
   await import('./src/cli/scan-clawhub-safe.js');
@@ -550,6 +683,12 @@ const cliArgs = process.argv.slice(2);
   console.log('    scan-action <t> <v>  Check agent action before execution');
   console.log('    audit [--config-path] Audit OpenClaw config for security issues [experimental]');
   console.log('    harden [--fix]       Auto-harden OpenClaw configuration [experimental]\n');
+  console.log('  SBOM / Supply Chain:');
+  console.log('    sbom-generate <dir>  Generate CycloneDX SBOM [--save] [--output <path>]');
+  console.log('    sbom-vulnerabilities <dir> Scan SBOM against OSV.dev [--sbom-path <path>]');
+  console.log('    sbom-check-hallucinations <dir> Check SBOM packages against registries');
+  console.log('    sbom-diff <dir>      Compare SBOM against baseline [--save-baseline]');
+  console.log('    sbom-report <dir>    Generate SBOM audit report [--format html|json]\n');
   console.log('    (no args)            Start MCP server on stdio\n');
   console.log('  Options:');
   console.log('    --verbosity <level>  minimal|compact|full (default: compact)');

package/openclaw.plugin.json

@@ -7,7 +7,7 @@
   "openclaw": {
     "extensions": ["tools", "skills"],
     "emoji": "shield",
-    "permissions": ["fs:read"]
+    "permissions": ["fs:read", "fs:write"]
   },
   "tools": [
     {
@@ -33,6 +33,26 @@
     {
       "name": "scanner_health",
       "description": "Check plugin health status"
+    },
+    {
+      "name": "sbom_generate",
+      "description": "Generate CycloneDX SBOM for a project"
+    },
+    {
+      "name": "sbom_scan_vulnerabilities",
+      "description": "Scan SBOM against OSV.dev vulnerability database"
+    },
+    {
+      "name": "sbom_check_hallucinations",
+      "description": "Check SBOM packages against official registries"
+    },
+    {
+      "name": "sbom_diff",
+      "description": "Compare current SBOM against stored baseline"
+    },
+    {
+      "name": "sbom_export_report",
+      "description": "Generate HTML/JSON SBOM audit report"
     }
   ],
   "skills": [

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "agent-security-scanner-mcp",
-  "version": "4.1.0",
+  "version": "4.1.1",
   "mcpName": "io.github.sinewaveai/agent-security-scanner-mcp",
   "description": "Security scanner MCP server for AI coding agents. Prompt injection firewall, package hallucination detection (4.3M+ packages), 1700+ vulnerability rules with AST & taint analysis, LLM-powered semantic code review, auto-fix. For Claude Code, Cursor, Windsurf, Cline, OpenClaw.",
   "main": "index.js",

package/src/lib/cyclonedx.js

@@ -0,0 +1,113 @@
+// CycloneDX v1.5 JSON serializer.
+// Consumes the normalized ComponentList model from sbom-component.js.
+
+import { randomUUID } from 'crypto';
+
+const SPEC_VERSION = '1.5';
+const TOOL_NAME = 'agent-security-scanner-mcp';
+
+/**
+ * Serialize a ComponentList into a CycloneDX v1.5 BOM.
+ * @param {import('./sbom-component.js').ComponentList} componentList
+ * @param {object[]} [vulnerabilities=[]]
+ * @param {{ toolVersion?: string }} [options={}]
+ * @returns {object} CycloneDX JSON object
+ */
+export function serialize(componentList, vulnerabilities = [], options = {}) {
+  const { toolVersion = '0.0.0' } = options;
+  const { components, edges, metadata } = componentList;
+
+  const bom = {
+    bomFormat: 'CycloneDX',
+    specVersion: SPEC_VERSION,
+    serialNumber: `urn:uuid:${randomUUID()}`,
+    version: 1,
+    metadata: {
+      timestamp: new Date().toISOString(),
+      tools: [{
+        name: TOOL_NAME,
+        version: toolVersion,
+      }],
+      component: {
+        type: 'application',
+        name: metadata.name || 'unknown',
+        version: metadata.version || '0.0.0',
+        'bom-ref': `pkg:npm/${metadata.name}@${metadata.version}`,
+      },
+    },
+    components: components.map(c => serializeComponent(c)),
+    dependencies: serializeDependencies(edges, components),
+  };
+
+  if (vulnerabilities.length > 0) {
+    bom.vulnerabilities = vulnerabilities;
+  }
+
+  return bom;
+}
+
+function serializeComponent(component) {
+  const result = {
+    type: 'library',
+    name: component.name,
+    version: component.version,
+    purl: component.purl,
+    'bom-ref': component.purl,
+    scope: component.scope === 'optional' ? 'optional' : 'required',
+  };
+
+  if (component.namespace) {
+    result.group = component.namespace;
+  }
+
+  const properties = [];
+  if (component.isDev) {
+    properties.push({ name: 'cdx:development', value: 'true' });
+  }
+  if (component.ecosystem) {
+    properties.push({ name: 'cdx:ecosystem', value: component.ecosystem });
+  }
+  if (properties.length > 0) {
+    result.properties = properties;
+  }
+
+  return result;
+}
+
+function serializeDependencies(edges, components) {
+  if (!edges || edges.length === 0) {
+    // Return flat list — each component depends on nothing
+    return components.map(c => ({ ref: c.purl, dependsOn: [] }));
+  }
+
+  // Group edges by source
+  const depMap = new Map();
+  for (const edge of edges) {
+    if (!depMap.has(edge.from)) depMap.set(edge.from, []);
+    depMap.get(edge.from).push(edge.to);
+  }
+
+  // Include all components as refs, merge edges
+  const allRefs = new Set(components.map(c => c.purl));
+  for (const [from, tos] of depMap) {
+    allRefs.add(from);
+    for (const to of tos) allRefs.add(to);
+  }
+
+  return [...allRefs].map(ref => ({
+    ref,
+    dependsOn: depMap.get(ref) || [],
+  }));
+}
+
+/**
+ * Add vulnerability entries to an existing BOM.
+ * @param {object} bom - CycloneDX BOM object
+ * @param {object[]} vulnerabilities - Array of CycloneDX vulnerability objects
+ * @returns {object} The mutated BOM
+ */
+export function addVulnerabilities(bom, vulnerabilities) {
+  if (!bom.vulnerabilities) bom.vulnerabilities = [];
+  bom.vulnerabilities.push(...vulnerabilities);
+  return bom;
+}