Skills
.Work. You
Rest

trivy

Community

Block vulnerabilities before commit.

Software Engineering#vulnerability#IaC#pre-commit#security scanning#container#trivy#sbom
Authormauromedda
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This skill helps ensure code and infrastructure are scanned for security vulnerabilities before they are committed, preventing exposure of vulnerable dependencies and misconfigurations.

Core Features & Use Cases

  • Pre-commit Security Scans: Run Trivy on filesystem, images, and IaC changes to catch vulnerabilities early.
  • CI/CD Integration: Integrate scans into pipelines to fail builds on CRITICAL/HIGH findings.
  • Remediation Aids: Provide guidance on upgrading dependencies and generating SBOMs for compliance.
  • Use Case: Imagine you modify a Terraform file or update package.json; this skill will detect vulnerabilities in dependencies or configurations before deployment.

Quick Start

Use this skill to perform a filesystem scan in your project: trivy fs --severity CRITICAL,HIGH --exit-code 1 .

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: trivy
Download link: https://github.com/mauromedda/agent-toolkit/archive/main.zip#trivy

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.