II.
LibraryProcess overview
Reference · livelib-process:security-research--supply-chain-security
supply-chain-security overview
Analysis of software supply chain security including dependency analysis, build system security, artifact integrity verification, and third-party component risk assessment using SBOM generation and vulnerability databases.
Attributes
displayName
supply-chain-security
description
Analysis of software supply chain security including dependency analysis, build system
security, artifact integrity verification, and third-party component risk assessment using
SBOM generation and vulnerability databases.
libraryPath
library/specializations/security-research/supply-chain-security.js
specialization
security-research
references
- - SLSA: https://slsa.dev/ - Sigstore: https://www.sigstore.dev/ - SBOM: https://www.cisa.gov/sbom
example
const result = await orchestrate('specializations/security-research/supply-chain-security', {
projectName: 'NPM Supply Chain Analysis',
projectPath: '/path/to/project',
ecosystems: ['npm', 'docker']
});
usesAgents
- hardware-security-researcher
- security-report-writer
Outgoing edges
lib_applies_to_domain1
- domain:cybersecurity·DomainCybersecurity
lib_belongs_to_specialization1
- specialization:security-research·Specialization
lib_implements_workflow1
- workflow:vulnerability-management·Workflow
uses_agent2
- lib-agent:security-research--hardware-security-researcher·LibraryAgenthardware-security-researcher
- lib-agent:security-research--security-report-writer·LibraryAgentSecurity Report Writer Agent
Incoming edges
None.