Best Trivy MCP Servers

Trivy is a comprehensive open source vulnerability scanner for containers and other artifacts, maintained by Aqua Security.

View all Trivy MCP Servers

Why this server?
Enables software composition analysis (SCA) and security assessments using Trivy to find vulnerabilities in project dependencies.
DevSecOps MCP Server
Testing & QA Tools Security Developer Tools
JesusDavidQuarksoft
A
security
A
license
A
quality
An MCP server that integrates SAST, DAST, and SCA security tools to enable AI-driven vulnerability scanning and automated security reporting. It allows AI assistants to execute and analyze results from tools like Semgrep, OWASP ZAP, and Trivy within a DevSecOps workflow.
Last updated 4 days ago
6
MIT
Why this server?
Provides methodology and documentation for CVE and dependency scanning, guiding AI agents through vulnerability detection in project dependencies
VibeDefender MCP Server
Penetration Testing Security Documentation Access
yunusj
A
security
A
license
A
quality
Provides security assessment methodology, tool documentation, and step-by-step workflows to guide AI agents through vulnerability scanning, static analysis, and penetration testing of applications and URLs.
Last updated 2 months ago
1
MIT
Why this server?
Performs security scans using Trivy to identify vulnerabilities and generate Software Bill of Materials (SBOM) in CycloneDX format.
MCP SBOM Server
Security Testing & QA Tools Developer Tools
MCP-Mirror
A
security
F
license
A
quality
Performs vulnerability scans using Trivy to generate Software Bill of Materials (SBOM) in CycloneDX format. It enables automated security auditing and dependency tracking through the Model Context Protocol.
Last updated 7 months ago
1
Why this server?
Integrates Trivy vulnerability scanner for container image and filesystem security scanning with configurable severity filtering
MCP Shamash
Security Penetration Testing Testing & QA Tools
NeoTecDigital
A
security
F
license
A
quality
Enables security auditing, penetration testing, and compliance validation with tools like Semgrep, Trivy, Gitleaks, and OWASP ZAP. Features strict project boundary enforcement and supports OWASP, CIS, and NIST compliance frameworks.
Last updated 5 months ago
7
Why this server?
Provides vulnerability scanning capabilities for various sources including filesystems, container images, and code repositories, allowing users to identify vulnerabilities and misconfigurations through an MCP server interface.
Trivyofficial
Security Testing & QA Tools Developer Tools
aquasecurity
-
security
A
license
-
quality
Trivy
Last updated 2 months ago
35
MIT
Why this server?
Performs container and application vulnerability scanning using Trivy and produces a Software Bill of Materials (SBOM) in CycloneDX format.
MCP SBOM Server
Developer Tools Security Code Analysis
gkhays
A
security
F
license
A
quality
A Model Context Protocol server that performs Trivy scans to generate Software Bill of Materials (SBOM) in CycloneDX format.
Last updated 10 months ago
1
2
Why this server?
Performs vulnerability scanning on container images with results uploaded to GitHub Security
mbta-mpc-server
Travel & Transportation Search Location Services
crdant
-
security
A
license
-
quality
mbta-mpc-server
Last updated 8 months ago
MIT
Why this server?
Integrated vulnerability scanner for comprehensive security reports across repositories
Argus
Code Analysis Testing & QA Tools Remote
athapong
-
security
A
license
-
quality
A Model Context Protocol tool for analyzing code repositories, performing security scans, and assessing code quality across multiple programming languages.
Last updated a year ago
1
MIT
Why this server?
Performs security scans including Software Composition Analysis (SCA) and Infrastructure as Code (IaC) security checks to identify vulnerabilities in dependencies and infrastructure configurations.
Security MCP Server
Security Code Analysis Testing & QA Tools
michoo
-
security
A
license
-
quality
Enables security scanning of codebases through integrated tools for secret detection, SCA, SAST, and DAST vulnerabilities, with AI-powered remediation suggestions based on findings.
Last updated 4 months ago
MIT

Trivyofficial