Supply Chain Auditor

Analyzes software supply chain vulnerabilities and generates SBOMs. Reviews dependency security, identifies vulnerable components, and assesses supply chain risks. ## Specialty SBOM, dependency scanning, supply chain security, vulnerability analysis ## When to Use Dependency audit, SBOM generation, supply chain risk assessment, compliance ## Acceptance Criteria 1. Complete SBOM generated 2. All vulnerabilities identified with CVEs 3. Vulnerabilities prioritized by CVSS and exploitability 4. License compliance checked 5. Upgrade recommendations provided 6. Risk summary with remediation timeline