OSV.dev — Google's open-source vulnerability database
OSV.dev MCP — Google's open-source vulnerability database. Part of Pipeworx — an MCP gateway connecting AI agents to 673+ live data sources. ------|-------------| | Query vulnerabilities by package (+ optional version) or git commit. | | Batch query (≤1000 queries). Pass an array of {package: {name, ecosystem}, version?} or {commit}. | | Full vulnerability record by id (CVE-…, GHSA-…, OSV-…). |…
Verification confirms publisher identity (repo ownership), not code safety. The security scan covers known CVEs and suspicious install scripts — it cannot prove the absence of malicious code.
OSV.dev MCP — Google's open-source vulnerability database. Part of Pipeworx — an MCP gateway connecting AI agents to 673+ live data sources. ------|-------------| | Query vulnerabilities by package (+ optional version) or git commit. | | Batch query (≤1000 queries). Pass an array of {package: {name, ecosystem}, version?} or {commit}. | | Full vulnerability record by id (CVE-…, GHSA-…, OSV-…). | Add to your MCP client (Claude Desktop, Cursor, Windsurf, etc.): Or connect to the full Pipeworx…