Best Trivy MCP Servers

Trivy is a comprehensive open source vulnerability scanner for containers and other artifacts, maintained by Aqua Security.

View all Trivy MCP Servers

Why this server?
Provides CVE vulnerability scanning using Trivy.
infra-ops-mcp
Cloud Platforms Monitoring Security
skyvanguard
A
license
B
quality
C
maintenance
A comprehensive MCP server for infrastructure operations with 92 tools across 13 categories, covering system monitoring, networking, containers, multi-cloud management, databases, CI/CD, IaC, security, and remote SSH fleet management.
Last updated 2026-01-24
92
1
MIT
Why this server?
Enables software composition analysis (SCA) and security assessments using Trivy to find vulnerabilities in project dependencies.
DevSecOps MCP Server
Testing & QA Tools Security Developer Tools
JesusDavidQuarksoft
A
license
B
quality
D
maintenance
An MCP server that integrates SAST, DAST, and SCA security tools to enable AI-driven vulnerability scanning and automated security reporting. It allows AI assistants to execute and analyze results from tools like Semgrep, OWASP ZAP, and Trivy within a DevSecOps workflow.
Last updated 2026-02-04
6
MIT
Why this server?
Provides access to Trivy for vulnerability scanning of containers, filesystems, and repositories, integrated into AI-driven security pipelines.
SecPipeofficial
Penetration Testing Autonomous Agents
FuzzingLabs
F
license
A
quality
F
maintenance
Enables AI agents to orchestrate security research workflows by connecting to containerized security tools via MCP, allowing automated vulnerability analysis and pipeline execution.
Last updated 2026-04-09
24
796
Why this server?
Integrates with Trivy to scan Docker images for CVEs and provide security vulnerability summaries.
Arcane MCP Server
Virtualization Developer Tools
RandomSynergy17
A
license
B
quality
A
maintenance
Manage your entire Docker infrastructure through natural language with 180 tools.
Last updated 2026-05-14
100
15
7
MIT
Why this server?
Integrates security scanning capabilities for container images and infrastructure configurations to identify vulnerabilities.
InfraClaude
Cloud Platforms Monitoring Observability
batu-sonmez
A
license
B
quality
C
maintenance
An MCP server that enables Claude to manage infrastructure across Kubernetes, Docker, Prometheus, and Terraform through natural language. It provides over 42 specialized tools with a safety-first design, including risk-based command classification and audit logging.
Last updated 2026-03-09
43
MIT
Why this server?
Provides vulnerability scanning for Terraform configurations.
terraform-best-practices-mcp
Developer Tools Cloud Platforms Security
DownAtTheBottomOfTheMoleHole
A
license
A
quality
F
maintenance
A Model Context Protocol (MCP) server for producing better Terraform through CLI analysis (tflint, checkov, trivy, kics, infracost), best-practice guidance from terraform-best-practices.com, cloud provider recommendations (Azure, AWS, GCP), and Terraform Registry resource and module guidance.
Last updated 2026-06-10
18
69
1
MIT
Why this server?
Allows running Trivy scans for vulnerability and security issue detection.
ArvanCloud MCP Server
Cloud Platforms Developer Tools
dwin-gharibi
A
license
B
quality
B
maintenance
Enables AI agents to manage the entire ArvanCloud platform (compute, networking, storage, CDN, DNS, etc.) plus a cloud-DevOps toolbox for provisioning, Kubernetes, IaC, security, and networking through natural language.
Last updated 2026-06-06
100
MIT
Why this server?
Integrates Trivy vulnerability scanner for container image and filesystem security scanning with configurable severity filtering
MCP Shamash
Security Penetration Testing Testing & QA Tools
NeoTecDigital
F
license
B
quality
C
maintenance
Enables security auditing, penetration testing, and compliance validation with tools like Semgrep, Trivy, Gitleaks, and OWASP ZAP. Features strict project boundary enforcement and supports OWASP, CIS, and NIST compliance frameworks.
Last updated 2026-02-28
7
Why this server?
Performs security scans using Trivy to identify vulnerabilities and generate Software Bill of Materials (SBOM) in CycloneDX format.
MCP SBOM Server
Security Testing & QA Tools Developer Tools
MCP-Mirror
F
license
A
quality
-
maintenance
Performs vulnerability scans using Trivy to generate Software Bill of Materials (SBOM) in CycloneDX format. It enables automated security auditing and dependency tracking through the Model Context Protocol.
Last updated 2025-06-25
1

SecPipeofficial