sbom-scan

Community

Scan for CVE vulnerabilities in SBOMs with Trivy.

Authoroscardlfr
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill identifies known CVE vulnerabilities in Software Bill of Materials (SBOMs) using Trivy, ensuring security vulnerabilities in dependencies are detected.

Core Features & Use Cases

  • CVE Scanning: Detects CVE vulnerabilities in SBOM files.
  • Severity Filtering: Allows scanning for specific severity levels.
  • Module Scanning: Scans a specific module or all modules if not specified.
  • SBOM Path: Allows scanning a specific SBOM file.
  • Project Root: Scans the specified project root directory.
  • Use Case: Use this Skill to ensure that your project's dependencies are free from known vulnerabilities.

Quick Start

Scan the Android app for critical vulnerabilities: /sbom-scan androidApp --severity CRITICAL

Dependency Matrix

Required Modules

trivy

Components

scripts

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: sbom-scan
Download link: https://github.com/oscardlfr/AndroidCommonDoc/archive/main.zip#sbom-scan

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.