Show HN: CLI that helps AI agents avoid vulnerable dependencies
Category: security
Tags: cli, dependency-check, vulnerability-scanner, mcp-server, ai-agent-tool
Score: 6.0/10 (Innovation: 5, Technical: 6, Documentation: 7, Utility: 6)
deptrust is a CLI tool and MCP server that checks package versions for known vulnerabilities across many ecosystems, designed to prevent AI agents from recommending outdated or vulnerable dependencies. Its integration with AI agents via MCP and support for a wide range of package registries makes it a practical tool for modern development workflows.
Target audience: backend devs, devops, ai-agent developers
Repository: https://github.com/clidey/deptrust · Go · MIT · 2 stars
View on Hacker News