open source CVE scanner for project dependencies. VSCode extension.

News
Yanac

VulScan-MCP scans project dependencies for known CVEs from NVD and OSV databases. Integrates with VS Code and GitHub Copilot. Ask “Check for security vulnerabilities” and it scans your manifest files. Only reports actual CVEs, not deprecated packages or outdated versions. Doesn’t auto-patch anything. Just provides information and remediation guidance. Source code: https://github.com/abhishekrai43/VulScan-MCP Marketplace: Search “VulScan-MCP” submitted by /u/FeelingResolution806 [link] [comments]Technical Information Security Content & DiscussionRead More