lockb-xray

Rust forensic CLI for Bun's binary lockfile (bun.lockb). Transforms opaque lockfile into security-focused report. Detects phantom deps, untrusted registries, suspicious resolutions, integrity mismatches. Workspace-aware, CI-native JSON/SARIF exports, fuzzing-resistant parser. "What is actually going to be installed?"