agent-bom-vulnerability-intel
Use agent-bom to check package, SBOM, inventory, and agent dependency exposure against OSV, GitHub Security Advisories, NVD, EPSS, and CISA KEV with explicit data-boundary choices. Use when a user asks for CVE lookup, advisory intelligence, exploitability context, fix versions, GHSA/OSV/NVD enrichment, or package vulnerability triage.
Best use case
agent-bom-vulnerability-intel is best used when you need a repeatable AI agent workflow instead of a one-off prompt.
Use agent-bom to check package, SBOM, inventory, and agent dependency exposure against OSV, GitHub Security Advisories, NVD, EPSS, and CISA KEV with explicit data-boundary choices. Use when a user asks for CVE lookup, advisory intelligence, exploitability context, fix versions, GHSA/OSV/NVD enrichment, or package vulnerability triage.
Teams using agent-bom-vulnerability-intel should expect a more consistent output, faster repeated execution, less prompt rewriting.
When to use this skill
- You want a reusable workflow that can be run more than once with consistent structure.
When not to use this skill
- You only need a quick one-off answer and do not need a reusable workflow.
- You cannot install or maintain the underlying files, dependencies, or repository context.
Installation
Claude Code / Cursor / Codex
Manual Installation
- Download SKILL.md from GitHub
- Place it in
.claude/skills/vulnerability-intel/SKILL.mdinside your project - Restart your AI agent — it will auto-discover the skill
How agent-bom-vulnerability-intel Compares
| Feature / Agent | agent-bom-vulnerability-intel | Standard Approach |
|---|---|---|
| Platform Support | Not specified | Limited / Varies |
| Context Awareness | High | Baseline |
| Installation Complexity | Unknown | N/A |
Frequently Asked Questions
What does this skill do?
Use agent-bom to check package, SBOM, inventory, and agent dependency exposure against OSV, GitHub Security Advisories, NVD, EPSS, and CISA KEV with explicit data-boundary choices. Use when a user asks for CVE lookup, advisory intelligence, exploitability context, fix versions, GHSA/OSV/NVD enrichment, or package vulnerability triage.
Where can I find the source code?
You can find the source code on GitHub using the link provided at the top of the page.
SKILL.md Source
# agent-bom-vulnerability-intel Use this skill to answer vulnerability-intelligence questions through agent-bom's existing scanners and canonical evidence model. Do not create one-off OSV, GHSA, NVD, EPSS, or KEV clients in the agent session; route through agent-bom so advisory provenance, aliases, severity gates, cache behavior, redaction, and output schemas stay consistent. ## Modes Start with the smallest mode that answers the user: | Mode | Use When | Data Boundary | |------|----------|---------------| | `explain-only` | User wants to know what would be queried | No advisory calls | | `check-package` | User names one package/version/ecosystem | Only that package identifier is queried | | `scan-local` | User wants findings from local agents or a local inventory file | Local parse first; advisory calls use package identifiers only | | `offline-review` | Private package names cannot leave the environment | Use local/cache-approved data only; disclose reduced coverage | | `export` | User wants PR gate, SARIF, JSON, or audit evidence | Write only to an operator-selected path | ## Guardrails - Ask before scanning a broad filesystem path or local agent configs. - Do not paste or reveal `NVD_API_KEY`, `GITHUB_TOKEN`, package-registry credentials, cloud credentials, or env values. - Do not send full source files, lockfiles, config contents, secrets, or scan reports to advisory providers. agent-bom extracts package identifiers first. - Treat unknown or unresolvable versions as coverage gaps, not clean results. - Preserve advisory provenance. Do not collapse OSV, GHSA, NVD, EPSS, and KEV into a single unlabelled severity. - Do not modify dependencies or install fixes unless the user explicitly asks for a remediation workflow. ## Workflows ### Explain the Boundary When the user asks "what leaves my environment?", answer before running: ```text This lookup sends package identifiers (name, version, ecosystem/PURL) and CVE IDs to public advisory databases. It does not send source code, raw configs, secrets, env values, credentials, or full scan reports. Use offline-review if private package names are sensitive. ``` ### Check One Package ```bash agent-bom check flask==2.0.0 --ecosystem pypi ``` Use this for quick triage and fix-version checks. If the package name belongs to a private registry or internal project, use `explain-only` first and let the operator decide whether the identifier may be queried externally. ### Scan a Canonical Inventory ```bash agent-bom agents --inventory inventory.json --format json --output findings.json ``` Use this after an operator-pull adapter or discovery skill emits canonical inventory. The inventory can stop at the file boundary; scanning is an explicit operator handoff. ### Export for a PR Gate ```bash agent-bom agents --inventory inventory.json --format sarif --output agent-bom.sarif ``` Use SARIF only when the user wants GitHub code-scanning or AppSec PR-gate evidence. Keep JSON for local analysis and audit trails. ### Offline Review If external advisory calls are not allowed, run with the project's offline or cache-approved mode and say clearly that coverage depends on the locally available vulnerability database. Do not call a clean offline result equivalent to a fresh OSV/GHSA/NVD lookup. ## Output Rules - Show CVE/GHSA/PYSEC aliases together when available. - Include severity source, fix version, EPSS, KEV status, CWE, and advisory source chain when present. - Separate "no vulnerabilities found" from "not enough data to evaluate." - Keep raw credentials and credential-bearing URLs out of output, logs, prompts, SARIF locations, and exported reports.
Related Skills
missing-guardrail-fixture
Fixture that intentionally omits the capability guardrail contract.
agent-bom-troubleshoot
Diagnose issues, check prerequisites, and validate configurations. Use when: "doctor", "debug", "why failing", "validate config", "check prerequisites", "something is broken", "db status", "fix my setup".
agent-bom-scan
Open security scanner for agentic infrastructure — agents, MCP, packages, blast radius, runtime, and trust for package CVEs (OSV, NVD, EPSS, KEV), container images, provenance, filesystems, and SBOMs. Use when: "check package", "scan image", "verify", "is this safe", "scan dependencies", "CVE lookup", "blast radius".
agent-bom-scan-infra
Scan infrastructure-as-code, cloud configurations, and find secrets. Use when: "check terraform", "scan kubernetes", "IaC", "find secrets", "scan dockerfile", "cloud security", "misconfigurations".
agent-bom-runtime
AI runtime security monitoring — context graph analysis, runtime audit log correlation with CVE findings, and vulnerability analytics queries. Use when the user mentions runtime monitoring, context graphs, lateral movement analysis, audit log correlation, or vulnerability analytics.
agent-bom-registry
MCP server security registry and trust assessment — look up servers in the 427+ server security metadata registry, run pre-install marketplace checks, batch fleet risk scoring, assess skill file trust, and run SAST code scans. Use when the user mentions MCP server trust, registry lookup, marketplace check, or skill trust assessment.
agent-bom-monitor
Monitor agent fleet, track trust scores, and manage lifecycle states. Use when: "fleet", "watch agents", "runtime status", "trust scores", "fleet sync", "agent lifecycle", "serve dashboard".
agent-bom-ingest
Validate and ingest operator-pushed agent-bom inventory JSON from AWS, Azure, GCP, Snowflake, CMDB, or endpoint collectors. Use when a user has canonical inventory JSON and wants local findings, graph, policy, provenance, or auditor-ready exports without giving agent-bom direct cloud credentials.
agent-bom-enforce
Enforce security policies on MCP tool calls and block dangerous operations at runtime. Use when: "block risky calls", "apply policy", "proxy", "runtime protection", "policy enforcement", "intercept MCP calls".
agent-bom-discover
Discover AI agents, MCP servers, and configurations on this machine or environment. Use when: "find agents", "what's configured", "doctor", "what MCP servers", "show me what's installed", "mcp inventory".
agent-bom-discover-snowflake
Discover Snowflake Cortex, Snowpark, notebook, Streamlit, MCP, and AI-observability assets from the operator's environment, emit canonical agent-bom inventory JSON, and scan it without giving agent-bom long-lived Snowflake credentials. Use when a user asks to inventory Snowflake AI or Cortex infrastructure as canonical inventory.
agent-bom-discover-gcp
Discover GCP-hosted AI agent and MCP-relevant assets from the operator's environment, emit canonical agent-bom inventory JSON, and scan it without giving agent-bom long-lived GCP credentials. Use when a user asks to inventory Vertex AI, Cloud Run, Cloud Functions, GKE, or agentic GCP infrastructure as canonical inventory.