Tamp.OsvScanner.V2 1.11.2

Prefix Reserved
.NET 8.0 This package targets .NET 8.0. The package is compatible with this framework or higher. 
dotnet add package Tamp.OsvScanner.V2 --version 1.11.2
                    


                    

                
NuGet\Install-Package Tamp.OsvScanner.V2 -Version 1.11.2
This command is intended to be used within the Package Manager Console in Visual Studio, as it uses the NuGet module's version of Install-Package. 
<PackageReference Include="Tamp.OsvScanner.V2" Version="1.11.2" />
For projects that support PackageReference, copy this XML node into the project file to reference the package. 
<PackageVersion Include="Tamp.OsvScanner.V2" Version="1.11.2" />
                    


                            Directory.Packages.props
                        

                    

                
<PackageReference Include="Tamp.OsvScanner.V2" />
                    


                            Project file
For projects that support Central Package Management (CPM), copy this XML node into the solution Directory.Packages.props file to version the package. 
paket add Tamp.OsvScanner.V2 --version 1.11.2
                    


                    

                
#r "nuget: Tamp.OsvScanner.V2, 1.11.2"
#r directive can be used in F# Interactive and Polyglot Notebooks. Copy this into the interactive tool or source code of the script to reference the package. 
#:package Tamp.OsvScanner.V2@1.11.2
#:package directive can be used in C# file-based apps starting in .NET 10 preview 4. Copy this into a .cs file before any lines of code to reference the package. 
#addin nuget:?package=Tamp.OsvScanner.V2&version=1.11.2
                    


                            Install as a Cake Addin
                        

                    

                
#tool nuget:?package=Tamp.OsvScanner.V2&version=1.11.2
                    


                            Install as a Cake Tool

Tamp CommandPlan wrapper for Google's `osv-scanner` (2.x). Cross-ecosystem SCA: reads a CycloneDX SBOM or per-language lockfiles, queries OSV.dev (npm, PyPI, Cargo, Go, Maven, NuGet, Packagist, Pub, …), emits SARIF or CycloneDX 1.5 with inline VEX. Pinned to 2.x — the 1→2 boundary restructured the CLI around subcommands and deprecated the original --sbom-only invocation form.

Product Compatible and additional computed target framework versions.
.NET net8.0 is compatible.  net8.0-android was computed.  net8.0-browser was computed.  net8.0-ios was computed.  net8.0-maccatalyst was computed.  net8.0-macos was computed.  net8.0-tvos was computed.  net8.0-windows was computed.  net9.0 is compatible.  net9.0-android was computed.  net9.0-browser was computed.  net9.0-ios was computed.  net9.0-maccatalyst was computed.  net9.0-macos was computed.  net9.0-tvos was computed.  net9.0-windows was computed.  net10.0 is compatible.  net10.0-android was computed.  net10.0-browser was computed.  net10.0-ios was computed.  net10.0-maccatalyst was computed.  net10.0-macos was computed.  net10.0-tvos was computed.  net10.0-windows was computed. 
Compatible target framework(s)
Included target framework(s) (in package)
Learn more about Target Frameworks and .NET Standard.

NuGet packages (1)

Showing the top 1 NuGet packages that depend on Tamp.OsvScanner.V2:

Package Downloads
Tamp.Security.Pipeline

Tamp meta-package — one PackageReference, one base-class inheritance, get the whole Wave 1+2 security chain: CycloneDX SBOM → SAST (OpenGrep + Roslyn) → SCA (osv-scanner + Dependency-Track) → Trivy secrets+misconfig → DefectDojo reimport. Adopters override `SecurityProductName` + `SecuritySolutionPath` and run `tamp Security`. DT and DD legs are env-var-gated; producer half runs unconditionally. .NET-focused for v0 — non-.NET adopters override Sbom to use Tamp.Syft instead.

GitHub repositories

This package is not used by any popular GitHub repositories.

Version Downloads Last Updated
1.11.2 144 5/25/2026
1.11.1 114 5/19/2026
1.11.0 113 5/18/2026