Skip to main content
Glama

Trivy

Official
by aquasecurity

Trivy MCP Server Plugin

This plugin starts a Model Context Protocol (MCP) server that integrates Trivy's security scanning capabilities with VS Code and other MCP-enabled tools.

Features

  • Natural Language Scanning: Ask questions about security issues in natural language
  • Multiple Scan Types:
    • Filesystem scanning for local projects
    • Container image vulnerability scanning
    • Remote repository security analysis
  • Integration with Aqua Platform: Optional integration with Aqua Security's platform for enhanced scanning capabilities
  • Flexible Transport: Support for both stdio and SSE (Server-Sent Events) transport protocols
  • IDE Integration: Seamless integration with VS Code, Cursor, JetBrains IDEs, and Claude Desktop

Quick Start

Installation

trivy plugin install mcp

Starting the Server

trivy mcp

Documentation

For comprehensive documentation, please see the docs directory:

Example Query

After setting up the plugin and configuring your IDE, you can start asking security-related questions:

Are there any vulnerabilities or misconfigurations in this project?

For more examples, see the Example Queries page.

License

MIT License - see the LICENSE file for details.

-
security - not tested
A
license - permissive license
-
quality - not tested

hybrid server

The server is able to function both locally and remotely, depending on the configuration or use case.

Trivy

  1. Features
    1. Installing the plugin
      1. Starting the plugin
        1. Available Options
      2. Authentication
        1. Available Auth Options
      3. Configuring the MCP Server in VSCode
        1. Prereqs
        2. Configuring the plugin
      4. Example Queries
        1. Local Project Analysis
        2. Container Image Scanning
        3. Repository Analysis
        4. Advanced Usage

      Related MCP Servers

      • -
        security
        A
        license
        -
        quality
        Algolia
        Last updated -
        23
        MIT License
        • Apple

      View all related MCP servers

      MCP directory API

      We provide all the information about MCP servers via our MCP API.

      curl -X GET 'https://glama.ai/api/mcp/v1/servers/aquasecurity/trivy-mcp'

      If you have feedback or need assistance with the MCP directory API, please join our Discord server