sbom-scan
CommunityScan for CVE vulnerabilities in SBOMs with Trivy.
Authoroscardlfr
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill identifies known CVE vulnerabilities in Software Bill of Materials (SBOMs) using Trivy, ensuring security vulnerabilities in dependencies are detected.
Core Features & Use Cases
- CVE Scanning: Detects CVE vulnerabilities in SBOM files.
- Severity Filtering: Allows scanning for specific severity levels.
- Module Scanning: Scans a specific module or all modules if not specified.
- SBOM Path: Allows scanning a specific SBOM file.
- Project Root: Scans the specified project root directory.
- Use Case: Use this Skill to ensure that your project's dependencies are free from known vulnerabilities.
Quick Start
Scan the Android app for critical vulnerabilities: /sbom-scan androidApp --severity CRITICAL
Dependency Matrix
Required Modules
trivy
Components
scripts
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: sbom-scan Download link: https://github.com/oscardlfr/AndroidCommonDoc/archive/main.zip#sbom-scan Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.