Dependency Security Scanner

Scan Python and JavaScript dependencies for known vulnerabilities using pip-audit and npm audit. Analyzes findings for relevance to the codebase, prioritizes remediation, and generates actionable security reports. Complements CI/CD blocking checks with intelligent triage and trend tracking. Integrations: - pip-audit (PyPA Advisory Database) - npm audit (npm Advisory Database) - CVE cross-referencing with codebase usage

Details

Scan Python and JavaScript dependencies for known vulnerabilities using pip-audit and npm audit. Analyzes findings for relevance to the codebase, prioritizes remediation, and generates actionable security reports. Complements CI/CD blocking checks with intelligent triage and trend tracking. Integrations: pip-audit (PyPA Advisory Database) npm audit (npm Advisory Database) CVE cross-referencing with codebase usage