VOOZH about

URL: https://glama.ai/mcp/servers/integrations/spdx

⇱ SPDX | Glama

  • Why this server?

    Generates Machine Learning Bill of Materials (MLBOM) in SPDX format for documenting AI agent dependencies and supply chain compliance.

    A
    license
    A
    quality
    B
    maintenance
    Security co-pilot for AI agents. Scans for vulnerabilities like prompt injection, infinite loops, and token bombing in AI Agents, audits MCP servers, verifies AGENTS.md governance, and generates EU AI Act compliance reports.
    Last updated
    10
    84
    2
    Apache 2.0

  • Why this server?

    Generates standardized Software Bill of Materials (SBOM) reports in the SPDX format for security compliance and transparency.

    A
    license
    B
    quality
    B
    maintenance
    AI supply chain security scanner for MCP servers and AI agents. 18 tools for CVE scanning, blast radius mapping, CIS benchmarks, SBOM generation, and compliance enforcement across OWASP LLM Top 10, MITRE ATLAS, NIST AI RMF, and EU AI Act.
    Last updated
    55
    22
    Apache 2.0

  • Why this server?

    Generates AI-BOMs in SPDX 3.0 format, providing a standard way to document AI software bill of materials.

    A
    license
    A
    quality
    A
    maintenance
    AI Bill of Materials compliance tracking and SBOM generation for AI/ML systems
    Last updated
    4
    MIT

  • Why this server?

    Uses SPDX license identifiers to filter and validate the licensing of hardware IP cores imported from external repositories.

    A
    license
    A
    quality
    B
    maintenance
    Provides AI assistants with a complete FPGA toolchain for HDL linting, simulation, synthesis, and place-and-route across various hardware targets. It features a GitHub-backed IP core registry that enables users to search for and import MIT-licensed cores directly through their chat interface.
    Last updated
    15
    MIT

  • Why this server?

    Generates Software Bill of Materials (SBOM) reports in SPDX format for documenting software components and dependencies.

  • Why this server?

    Uses SPDX identifiers to perform license risk assessments, categorizing npm packages into risk levels from low to critical.

    A
    license
    -
    quality
    C
    maintenance
    An MCP server for searching, inspecting, and evaluating NPM packages through health scoring and license risk assessments. It provides comprehensive package analysis including maintenance status, popularity trends, and security vulnerability reports to help users make informed dependency decisions.
    Last updated
    3
    MIT

  • Why this server?

    Used for the Software Bill of Materials (SBOM) format that lists all components included in the container image