ai-plugins-endorlabs
Endor Labs plugin: set up endorctl to scan, prioritize, and fix software supply chain security risks.
🛡️ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for ai-plugins-endorlabs, derived from its capabilities.
AIVSS 8.6 · High
View MAESTRO 7-layer threat model →Overview
Endor Labs' plugin for Claude Code. It sets up the endorctl CLI and uses Endor Labs to scan, prioritize, and fix security risks across the software supply chain (dependencies, SCA, reachability). Surface is commands/skills that install endorctl and run supply-chain scans, returning prioritized findings.
Key features
- Sets up endorctl CLI
- Software supply chain scanning
- Risk prioritization by reachability
- Guided remediation
Use cases
- Find and prioritize vulnerable dependencies
- Reduce SCA noise using reachability analysis