Scan a filesystem for vulnerabilities, secrets, and misconfigurations with Trivy to identify security issues.
MIT
203,628 tools. Last updated 2026-06-14 19:34
"Trivy" matching MCP tools:
- Scan container images for vulnerabilities using Trivy, identifying security issues.MIT
- Audit security as a pre-release gate: scan dependencies, secrets, and patterns; auto-chain evidence, create governance tasks, and send notifications on critical findings.MIT
- Retrieve a compact summary of supply-chain threat incidents for a GitHub organization. Quickly identify incidents by name (e.g., 'axios compromise') to find the matching incident ID before fetching full details.Apache 2.0
- Ingest external security scan output and normalize into ledger findings to gate deploys on unresolved criticals.MIT
- Lists the 100 most recent Harden-Runner-monitored workflow runs for a GitHub organization or repository, returning run IDs and clickable dashboard URLs for CI/CD security investigation.Apache 2.0
Matching MCP Servers
- MIT
- Alicense-qualityFmaintenanceProvides Trivy security scanning capabilities through a standardized interface, allowing users to scan projects for vulnerabilities and automatically fix them by updating dependencies.Last updated10MIT
- Search across a GitHub organization to locate all workflows referencing a specific Action. Essential for responding to compromised Actions by identifying affected repositories and workflows.Apache 2.0
- Ingest JSON output from Trivy, Grype, or Syft scans to analyze packages and assess blast radius.Apache 2.0
- Run compliance benchmarks with Trivy configuration scanning to identify security issues and check infrastructure adherence to standards.MIT
- Scan a filesystem path for CVE vulnerabilities using Trivy, identifying security issues in dependencies.MIT
- Run Trivy config scanning to detect security misconfigurations and compliance violations in Terraform code.MIT
- Combine checkov, trivy, and kics scan outputs to generate a compliance summary report assessed against frameworks like CIS, PCI-DSS, HIPAA, or SOX.MIT
- Check the status of the Trivy vulnerability scanner for a specific environment to confirm it is running and ready.MIT
- Scan container images for security vulnerabilities using Trivy to identify and filter by severity levels like HIGH and CRITICAL.MIT
- Scan infrastructure-as-code and configuration files for security vulnerabilities using Trivy's config scanner.MIT
- Generate SPDX SBOM for container images using Trivy scanner to enable security auditing and dependency tracking.
- Generate SPDX SBOM for container images using Trivy scanner to identify software components and dependencies in SPDX JSON format.