Inspect local npm supply-chain risks with SBOMs, audits, and evidence reports.
Copy the install command and let the AI configure it · recommended for beginners
No copy-paste install info for "PatchProof MCP" yet — see the docs or source repo.
Scan this local npm repository's dependencies and configuration, identify potential supply-chain risks, and list findings by severity.
A severity-grouped risk list covering suspicious dependencies, configuration issues, and brief explanations.
Generate a software bill of materials (SBOM) for this project, listing direct and transitive dependencies in a structured format for compliance records.
A structured SBOM showing dependency hierarchy, package details, and an archive-ready output format.
Based on the repository scan and dependency audit, prepare an evidence report for security or compliance teams, including scope, findings, and conclusions.
A readable evidence report with scope, key findings, a risk summary, and conclusions.
Search npm packages, audit dependencies, and compare package details and size.
Access live NPM package data for version checks and dependency risk reviews.
Safely patch binary artifacts with manifests, verification, and reversible restore.
Use GitHub tools within the current repo context without filesystem access.
Assess invoices before payment with verification and clear risk decisions.
Audit MCP servers for conformance, tool usability, and error handling quality.