From 1dfef62e3f81473d88e2a9e5240e01653eac20b7 Mon Sep 17 00:00:00 2001
From: infai-tech <natburke@infaicorp.com>
Date: Sun, 31 May 2026 00:24:16 -1000
Subject: [PATCH 1/2] Add VulnFeed to OSS and Dependency management

---
 README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/README.md b/README.md
index 4c1cedd..b6a56ea 100644
--- a/README.md
+++ b/README.md
@@ -124,6 +124,7 @@ Dependency security testing and analysis is very important part of discovering s
 | **Dependency Combobulator** | [https://github.com/apiiro/combobulator](https://github.com/apiiro/combobulator) | Dependency-related attacks detection and prevention through heuristics and insight engine (support multiple dependency schemes) | ![Combobulator](https://img.shields.io/github/stars/apiiro/combobulator?style=for-the-badge) |
 | **DependencyTrack** | [https://github.com/DependencyTrack/dependency-track](https://github.com/DependencyTrack/dependency-track) | Dependency security tracking platform |![DependencyTrack](https://img.shields.io/github/stars/DependencyTrack/dependency-track?style=for-the-badge) | 
 | **DependencyCheck** | [https://github.com/jeremylong/DependencyCheck](https://github.com/jeremylong/DependencyCheck) | Simple dependency security scanner good for CI |![DependencyCheck](https://img.shields.io/github/stars/jeremylong/DependencyCheck?style=for-the-badge) | 
+| **VulnFeed** | [https://github.com/infai-tech/vulnfeed-mcp](https://github.com/infai-tech/vulnfeed-mcp) | MCP server for software composition analysis — scans lockfiles (npm, PyPI, Go, Cargo, RubyGems, Packagist) for known CVEs from NVD + GitHub Advisories, prioritized by EPSS exploit probability, with fix-version recommendations | |
 | **Retire.js** | [https://github.com/retirejs/retire.js/](https://github.com/retirejs/retire.js/) | Helps developers to detect the use of JS-library versions with known vulnerabilities |![Retire.js](https://img.shields.io/github/stars/retirejs/retire.js?style=for-the-badge) |
 | **PHP security checker** | [https://github.com/fabpot/local-php-security-checker](https://github.com/fabpot/local-php-security-checker) | Check vulnerabilities in PHP dependencies |![Retire.js](https://img.shields.io/github/stars/fabpot/local-php-security-checker?style=for-the-badge)| 
 | **bundler-audit** | [https://github.com/rubysec/bundler-audit](https://github.com/rubysec/bundler-audit) | Patch-level verification for bundler |![Bundler audit](https://img.shields.io/github/stars/rubysec/bundler-audit?style=for-the-badge)| 

From 6372c26f511f486fc39bbbbbff13cb6290b9ef11 Mon Sep 17 00:00:00 2001
From: agent-bot <support+bot@novadyne.ai>
Date: Fri, 12 Jun 2026 08:25:18 +0000
Subject: [PATCH 2/2] chore: update repo link infai-tech -> novadyne-hq (GitHub
 username rename)

---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index b6a56ea..5320de8 100644
--- a/README.md
+++ b/README.md
@@ -124,7 +124,7 @@ Dependency security testing and analysis is very important part of discovering s
 | **Dependency Combobulator** | [https://github.com/apiiro/combobulator](https://github.com/apiiro/combobulator) | Dependency-related attacks detection and prevention through heuristics and insight engine (support multiple dependency schemes) | ![Combobulator](https://img.shields.io/github/stars/apiiro/combobulator?style=for-the-badge) |
 | **DependencyTrack** | [https://github.com/DependencyTrack/dependency-track](https://github.com/DependencyTrack/dependency-track) | Dependency security tracking platform |![DependencyTrack](https://img.shields.io/github/stars/DependencyTrack/dependency-track?style=for-the-badge) | 
 | **DependencyCheck** | [https://github.com/jeremylong/DependencyCheck](https://github.com/jeremylong/DependencyCheck) | Simple dependency security scanner good for CI |![DependencyCheck](https://img.shields.io/github/stars/jeremylong/DependencyCheck?style=for-the-badge) | 
-| **VulnFeed** | [https://github.com/infai-tech/vulnfeed-mcp](https://github.com/infai-tech/vulnfeed-mcp) | MCP server for software composition analysis — scans lockfiles (npm, PyPI, Go, Cargo, RubyGems, Packagist) for known CVEs from NVD + GitHub Advisories, prioritized by EPSS exploit probability, with fix-version recommendations | |
+| **VulnFeed** | [https://github.com/novadyne-hq/vulnfeed-mcp](https://github.com/novadyne-hq/vulnfeed-mcp) | MCP server for software composition analysis — scans lockfiles (npm, PyPI, Go, Cargo, RubyGems, Packagist) for known CVEs from NVD + GitHub Advisories, prioritized by EPSS exploit probability, with fix-version recommendations | |
 | **Retire.js** | [https://github.com/retirejs/retire.js/](https://github.com/retirejs/retire.js/) | Helps developers to detect the use of JS-library versions with known vulnerabilities |![Retire.js](https://img.shields.io/github/stars/retirejs/retire.js?style=for-the-badge) |
 | **PHP security checker** | [https://github.com/fabpot/local-php-security-checker](https://github.com/fabpot/local-php-security-checker) | Check vulnerabilities in PHP dependencies |![Retire.js](https://img.shields.io/github/stars/fabpot/local-php-security-checker?style=for-the-badge)| 
 | **bundler-audit** | [https://github.com/rubysec/bundler-audit](https://github.com/rubysec/bundler-audit) | Patch-level verification for bundler |![Bundler audit](https://img.shields.io/github/stars/rubysec/bundler-audit?style=for-the-badge)|