Cross-project CVE & supply-chain response
Watch Commander
remediation · codexThreat radar
Open findings
5
From real scans
Critical / high
3
Risk engine output
Fixes available
5
Safe upgrade known
Approvals pending
0
Signed queue
Affected projects
| Project | Risk | Package | Reachability | Fix | Status |
|---|---|---|---|---|---|
| acme/data-api (PyPI) | 59/100 | requests@2.28.0 | reachable | → 2.31.0 | fix_available |
| acme/web-storefront | 21/100 | color-convert@1.9.0 | likely unused | → 2.0.1 | open |
| acme/web-storefront | 38/100 | minimist@1.2.5 | transitive | → 1.2.8 | open |
| acme/web-storefront | 64/100 | axios@1.4.0 | reachable | → 1.6.2 | fix_available |
| acme/web-storefront | 88/100 | lodash@4.17.11 | reachable | → 4.17.21 | pr_ready |
Posture
- Actively exploited (KEV)1
- Malicious package alerts0
- Fixes blocked0
- Remediation jobs running0
- Advisories scanned4
Integrations · 4/14 ready
GitHubOSV-Scanner CLICodex CLIOpenAI SDKVercel AI SDKTelegramVercelOpenClawSBOMLocal roots