Trivy Security Scanning
CommunityFind vulnerabilities, secrets, and misconfigs
Software Engineering#vulnerabilities#security scanning#misconfiguration#secrets detection#trivy#license audit
Authorductoanoxo
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps you detect security vulnerabilities, leaked secrets, and insecure configuration patterns before they reach production, reducing the risk of breaches and compliance issues.
Core Features & Use Cases
- Vulnerability scanning: Run Trivy to check dependency and filesystem risks or scan specific container images for HIGH/CRITICAL findings.
- Secret leak detection: Scan the codebase for hardcoded credentials, tokens, and other sensitive data using the secret scanner.
- Misconfiguration auditing: Use Trivy config checks against Dockerfiles and IaC to catch insecure or non-compliant settings.
- License review: Identify potential prohibited or incompatible licenses in the project dependencies.
- CI/reporting readiness: Export scan results in JSON for structured analysis and easier review in automated pipelines.
Quick Start
Tell the AI agent: Scan the repository for HIGH and CRITICAL vulnerabilities and provide actionable remediation guidance.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: Trivy Security Scanning Download link: https://github.com/ductoanoxo/Agent_SQL/archive/main.zip#trivy-security-scanning Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.