Skip to main content

x2y-guardian: Cross-language Dependency Vulnerability Scanner by x2y devs tools

Introducing x2y-guardian

Overview

A professional command-line tool for cross-language dependency vulnerability scanning and analysis. Built by x2y dev tools, it leverages the OSV (Open Source Vulnerability) database for precise vulnerability data.

Project Links

Description

x2y-guardian is designed for developers and security teams who want a unified solution for scanning projects across multiple languages and package managers. By leveraging the OSV database and aggregating data from key security advisories, it provides accurate, up-to-date vulnerability information for dependencies, ensuring safe and secure software projects.

Key Features

  • Multi-language Support: Scan projects across JavaScript/Node.js, Python, Java (Maven, Gradle), Go, Rust, PHP, and Ruby with a single tool.

  • Precise Vulnerability Matching: Accurate mapping of vulnerabilities to package versions using the OSV schema.

  • Comprehensive Audit: Detects outdated dependency versions in all supported ecosystems.

  • Advanced Parsing: Supports complex scenarios like nested modules, dev-dependencies, Maven dependency management, and more.

  • Multiple Output Formats: Choose between console output for development or JSON for CI/CD integration.

Supported Ecosystems

JavaScript/Node.js: Scans package.json using npm.

Python: Scans requirements.txt and pyproject.toml using pip.

Java: Scans pom.xml, build.gradle, and build.gradle.kts using Maven or Gradle.

Go: Scans go.mod using Go Modules.

Rust: Scans Cargo.toml using Cargo.

PHP: Scans composer.json using Composer.

Ruby: Scans Gemfile and Gemfile.lock using RubyGems.

Installation & Usage

Installation

Install globally via npm: npm install -g x2y-guardian

Core Commands

  • x2y-guardian hello: Display a friendly greeting and check functionality.

  • x2y-guardian scan: Scan the current directory for vulnerabilities.

  • x2y-guardian audit: Audit dependencies to detect outdated versions.

Scanning Examples

  • Default Scan: x2y-guardian scan

  • Specific Path: x2y-guardian scan --path /path/to/project --output console

  • JSON Export: x2y-guardian scan --path /path/to/project --output json

Data Sources & Licensing

Data Sources

x2y-guardian aggregates and normalizes data from GitHub Security Advisories, PyPA (Python Package Authority), RustSec, and the Global Security Database.

License

This project is licensed under the MIT License, the same as the core x2y SDK.

Package Information

  • Current Version: 1.0.2

  • Unpacked Size: 51.3 kB

  • Maintainer: x2ydevs.xyz

Comments

Post a Comment

Popular posts from this blog

Reclaim Your Digital Freedom: The x2y Devs Tools Approach to True Digital Sovereignty

In an age where data breaches are daily news and tech giants silently collect our information, the concept of " digital sovereignty " has never been more vital. We surrender control over our personal data, our privacy, and even our computing experience to third-party servers and corporate policies. But what if there was another way? Enter x2y Devs Tools , a visionary team dedicated to empowering individuals with the tools to truly own their digital lives. Their philosophy is simple yet revolutionary: your data, your control, no cloud reliance. This isn't just about security; it's about fundamental digital freedom. Below, we dive into their two flagship products— x2y AV Ultimate and x2y Authenticator —and discover how they are reshaping the landscape of personal cybersecurity through transparency and decentralization. 1. x2y AV Ultimate: The Antivirus Reimagined for the Modern Age Forget the bloated, resource-hogging antivirus suites of yesterday. x2y AV Ulti...
35 comments
Read more

Architecting the Future: The Journey of x2y Devs Tools

  THE GENESIS OF AN IDEA On October 14, 2025, the tech landscape witnessed the birth of an ambitious vision. Founded by Moses Gitiriku , x2y Devs Tools began not as a massive corporation, but as a singular, powerful idea: that development should be frictionless. The name itself—x2y—encapsulates the core mission of transforming a complex problem (X) into a streamlined solution (Y) without the traditional overhead that plagues modern software engineering. " The most powerful tools are the ones that disappear into the workflow," says Moses Gitiriku , CEO & Founder. "Our goal at x2y is to remove the 'noise' of development so engineers can focus purely on the signal of creation." What started as a conceptual framework just three months ago has rapidly matured into a robust suite of tools. This growth is a testament to the fact that when you build with a "developer-first" mentality, the world takes notice. Today, x2y is no longer just a project; it ...
Post a Comment
Read more