Verified in marketplace
19Plugin marketplace
Cosign-signed plugins, track-based safety guarantees.
Nox ships 7 tracks and 19 plugins. Every plugin in the official registry carries a Sigstore keyless signature tied to its `release.yml` workflow OIDC subject. The default trust policy refuses install on unsigned drops; operators bypass with `--allow-unverified` or `plugins.trust_policy: permissive`.
Total plugins
19CI-safe tracks
6/7✓ Cosign keyless verified
Featured: signed plugins ready for production
nox/container ✓ Verified Dockerfile linting, image vulnerability scanning, container SBOM (22 rules)
nox plugin install nox/containernox/sast ✓ Verified Language-specific vulnerability detection (SQL injection, XSS, path traversal) — 10 rules
nox plugin install nox/sastnox/reachability ✓ Verified Multi-language reachability for VULN findings (Go, PyPI, npm, Cargo, Maven, RubyGems, NuGet)
nox plugin install nox/reachabilitynox/taint-analysis ✓ Verified Cross-file & interprocedural taint flow including AI source-to-sink (TAINT-001..007 + TAINT-AI-001/002)
nox plugin install nox/taint-analysisnox/api-abuse ✓ Verified API authorization testing (BOLA, BFLA, rate-limit) — 5 rules
nox plugin install nox/api-abusenox/attack-surface ✓ Verified Static endpoint extraction and exposure mapping (Go, Python, JS/TS frameworks)
nox plugin install nox/attack-surfacenox/dast ✓ Verified DAST web/API probes — HTTP misconfig (DAST-001..006) plus opt-in AI-DAST: prompt injection, system prompt leak, tool smuggling, cost amplification (DAST-007..010)
nox plugin install nox/dastnox/k8s-runtime ✓ Verified Live Kubernetes cluster security scanning (KRUNT-001..008)
nox plugin install nox/k8s-runtimenox/red-team ✓ Verified Attack chain analysis and HTTP validation (REDTEAM-001..010)
nox plugin install nox/red-teamnox/ai-eval ✓ Verified Adversarial prompt corpus runner — jailbreak / system-leak / role-confusion / tool-misuse against a chat endpoint (AI-EVAL-001..004)
nox plugin install nox/ai-evalnox/depconfusion ✓ Verified Dependency confusion detection and prevention across npm, PyPI, RubyGems, Maven
nox plugin install nox/depconfusionnox/baseline-mgmt ✓ Verified Finding baseline snapshots, diff, and triage — brownfield migration enabler
nox plugin install nox/baseline-mgmtnox/policy-gate ✓ Verified Policy evaluation and CI gate (pass/fail) — 5 rules
nox plugin install nox/policy-gatenox/grc ✓ Verified GRC compliance assessment across 12 frameworks (SOC2, ISO 27001, GDPR, FedRAMP L/M/H, HIPAA, PCI-DSS, NIST 800-53, NIST CSF, CIS v8, CMMC)
nox plugin install nox/grcnox/threat-explain ✓ Verified LLM-enhanced finding explanations and impact analysis (8 rules + LLM)
nox plugin install nox/threat-explainnox/threat-model ✓ Verified STRIDE-based auto-modeling with optional AI threat generation (5 rules + LLM)
nox plugin install nox/threat-modelnox/risk-score ✓ Verified EPSS / KEV vulnerability prioritization and severity scoring
nox plugin install nox/risk-scorenox/threat-enrich ✓ Verified CVE enrichment, CWE mapping, and MITRE ATT&CK correlation (13 rules)
nox plugin install nox/threat-enrichnox/triage-agent ✓ Verified LLM-powered finding prioritization and false-positive reduction (4 rules + 7-provider LLM: openai, anthropic, gemini, ollama, cohere, bedrock, copilot)
nox plugin install nox/triage-agent Track 1
Core Analysis
Static analysis plugins for source and config files. Fast, deterministic, and safe in local and CI workflows.
- passive
- CI yes
- Offline yes
- RO yes
Track 1
Core Analysis
Static analysis plugins for source and config files. Fast, deterministic, and safe in local and CI workflows.
- Dockerfile linting, image vulnerability scanning, container SBOM (22 rules)
nox-plugin-container✓ Verified - Language-specific vulnerability detection (SQL injection, XSS, path traversal) — 10 rules
nox-plugin-sast✓ Verified - Multi-language reachability for VULN findings (Go, PyPI, npm, Cargo, Maven, RubyGems, NuGet)
nox-plugin-reachability✓ Verified - Cross-file & interprocedural taint flow including AI source-to-sink (TAINT-001..007 + TAINT-AI-001/002)
nox-plugin-taint-analysis✓ Verified
Track 2
Dynamic & Runtime Security
Runtime-facing plugins for active testing of deployed services and environments with explicit opt-in.
- active
- CI no
- Offline no
- RO no
Track 2
Dynamic & Runtime Security
Runtime-facing plugins for active testing of deployed services and environments with explicit opt-in.
- API authorization testing (BOLA, BFLA, rate-limit) — 5 rules
nox-plugin-api-abuse✓ Verified - Static endpoint extraction and exposure mapping (Go, Python, JS/TS frameworks)
nox-plugin-attack-surface✓ Verified - DAST web/API probes — HTTP misconfig (DAST-001..006) plus opt-in AI-DAST: prompt injection, system prompt leak, tool smuggling, cost amplification (DAST-007..010)
nox-plugin-dast✓ Verified - Live Kubernetes cluster security scanning (KRUNT-001..008)
nox-plugin-k8s-runtime✓ Verified - Attack chain analysis and HTTP validation (REDTEAM-001..010)
nox-plugin-red-team✓ Verified - Adversarial prompt corpus runner — jailbreak / system-leak / role-confusion / tool-misuse against a chat endpoint (AI-EVAL-001..004)
nox-plugin-ai-eval✓ Verified
Track 3
Supply Chain & Provenance
Integrity and provenance checks for build outputs, dependencies, and release artifacts.
- passive
- CI yes
- Offline no
- RO yes
Track 3
Supply Chain & Provenance
Integrity and provenance checks for build outputs, dependencies, and release artifacts.
- Dependency confusion detection and prevention across npm, PyPI, RubyGems, Maven
nox-plugin-depconfusion✓ Verified
Track 4
Policy, Risk & Governance
Plugins that turn findings into enforceable policy and compliance decisions.
- passive
- CI yes
- Offline yes
- RO yes
Track 4
Policy, Risk & Governance
Plugins that turn findings into enforceable policy and compliance decisions.
- Finding baseline snapshots, diff, and triage — brownfield migration enabler
nox-plugin-baseline-mgmt✓ Verified - Policy evaluation and CI gate (pass/fail) — 5 rules
nox-plugin-policy-gate✓ Verified - GRC compliance assessment across 12 frameworks (SOC2, ISO 27001, GDPR, FedRAMP L/M/H, HIPAA, PCI-DSS, NIST 800-53, NIST CSF, CIS v8, CMMC)
nox-plugin-grc✓ Verified
Track 5
Threat Modeling & Design
Design-time security analysis plugins for architecture and threat model quality.
- passive
- CI yes
- Offline yes
- RO yes
Track 5
Threat Modeling & Design
Design-time security analysis plugins for architecture and threat model quality.
- LLM-enhanced finding explanations and impact analysis (8 rules + LLM)
nox-plugin-threat-explain✓ Verified - STRIDE-based auto-modeling with optional AI threat generation (5 rules + LLM)
nox-plugin-threat-model✓ Verified
Track 6
Intelligence & Early Warning
Threat intelligence plugins that provide context, correlation, and early signal amplification.
- passive
- CI yes
- Offline no
- RO yes
Track 6
Intelligence & Early Warning
Threat intelligence plugins that provide context, correlation, and early signal amplification.
- EPSS / KEV vulnerability prioritization and severity scoring
nox-plugin-risk-score✓ Verified - CVE enrichment, CWE mapping, and MITRE ATT&CK correlation (13 rules)
nox-plugin-threat-enrich✓ Verified
Track 7
Agent & Assistance
AI-assisted explanation and remediation planning plugins for human and agent users.
- passive
- CI yes
- Offline no
- RO yes
Track 7
Agent & Assistance
AI-assisted explanation and remediation planning plugins for human and agent users.
- LLM-powered finding prioritization and false-positive reduction (4 rules + 7-provider LLM: openai, anthropic, gemini, ollama, cohere, bedrock, copilot)
nox-plugin-triage-agent✓ Verified