scan_filesystem
Scan local files and directories for vulnerabilities, misconfigurations, and secrets using Trivy. Supports Dockerfiles, Terraform, Kubernetes manifests, and application dependencies.
Instructions
Scan a local directory or file for vulnerabilities, misconfigurations, and secrets using Trivy. Supports Dockerfiles, Terraform, Kubernetes manifests, and application dependencies.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| path | Yes | Local directory or file path to scan | |
| timeout | No | Timeout in seconds (default: 120) | |
| scanners | No | Scanner types: vuln,misconfig,secret,license (default: vuln,misconfig,secret) | |
| severity | No | Severities to filter (default: CRITICAL,HIGH,MEDIUM) | |
| ignore_unfixed | No | Ignore vulnerabilities without fixes |