{"skill":{"slug":"sbom-explainer","displayName":"Sbom Explainer","summary":"把依赖清单或 SBOM 翻译成非技术可读的风险说明，按影响面排序。；use for sbom, dependencies, risk workflows；do not use for 伪造 CVE 状态, 替代专业漏洞扫描.","tags":{"latest":"1.0.0"},"stats":{"comments":0,"downloads":153,"installsAllTime":0,"installsCurrent":0,"stars":0,"versions":1},"createdAt":1773902173336,"updatedAt":1773903114284},"latestVersion":{"version":"1.0.0","createdAt":1773902173336,"changelog":"Initial release of sbom-explainer.\n\n- Translates SBOMs or dependency lists into non-technical, human-readable risk summaries sorted by impact.\n- Clearly separates suitable and unsuitable use cases, emphasizing boundaries (not for CVE forgery or vulnerability scanning).\n- Outputs include dependency overview, key risks, affected scope, priorities, mitigation advice, and communication points.\n- Provides structured drafts for review, listing missing info as confirmation items, and maintains security boundaries—read-only and audit-friendly.\n- Supports both shell execution (where permitted) and direct text output using provided templates and specs.","license":"MIT-0"},"metadata":{"os":["darwin","linux","win32"],"systems":null},"owner":{"handle":"52yuanchangxing","userId":"s178sqjkywrs4vbnfcrr7wx7f583gef5","displayName":"vx：17605205782","image":"https://avatars.githubusercontent.com/u/39086567?v=4"},"moderation":null}