diff --git a/registries/toolhive/servers/agent-bom/server.json b/registries/toolhive/servers/agent-bom/server.json new file mode 100644 index 00000000..e0b448bf --- /dev/null +++ b/registries/toolhive/servers/agent-bom/server.json @@ -0,0 +1,80 @@ +{ + "$schema": "https://static.modelcontextprotocol.io/schemas/2025-12-11/server.schema.json", + "name": "io.github.msaad00/agent-bom", + "description": "AI supply chain security scanner — CVE scanning, blast radius analysis, policy enforcement, and SBOM generation for MCP servers and AI agents", + "title": "agent-bom", + "repository": { + "url": "https://github.com/msaad00/agent-bom", + "source": "github" + }, + "version": "0.31.1", + "packages": [ + { + "registryType": "oci", + "identifier": "ghcr.io/msaad00/agent-bom:v0.31.1", + "transport": { + "type": "stdio" + }, + "environmentVariables": [ + { + "name": "NVD_API_KEY", + "description": "NVD API key for higher rate limits on CVSS enrichment (optional)", + "isRequired": false, + "isSecret": true + } + ] + } + ], + "_meta": { + "io.modelcontextprotocol.registry/publisher-provided": { + "io.github.msaad00": { + "ghcr.io/msaad00/agent-bom:v0.31.1": { + "tier": "Community", + "status": "Active", + "tags": [ + "security", + "vulnerability-scanning", + "sbom", + "supply-chain", + "cve", + "blast-radius", + "mcp", + "ai-agents" + ], + "tools": [ + "scan", + "check", + "blast_radius", + "policy_check", + "registry_lookup", + "generate_sbom", + "compliance", + "remediate" + ], + "permissions": { + "network": { + "outbound": { + "allow_host": [ + "api.osv.dev", + "services.nvd.nist.gov", + "api.first.org", + "www.cisa.gov", + "registry.npmjs.org", + "pypi.org" + ], + "allow_port": [ + 443 + ] + } + } + }, + "custom_metadata": { + "author": "W S", + "homepage": "https://github.com/msaad00/agent-bom", + "license": "Apache-2.0" + } + } + } + } + } +}