Trivy MCP

Security Free Open Source

Scan containers and IaC with AI via MCP. Detect vulnerabilities, misconfigurations, and secrets using Aqua Security's Trivy scanner.

What is Trivy MCP?

Trivy MCP integrates Aqua Security's Trivy scanner with AI through MCP. Trivy is the most popular open-source vulnerability scanner, capable of scanning container images, file systems, Git repos, and Kubernetes clusters.

Comprehensive Scanning

AI models through Trivy MCP can trigger scans, analyze results, prioritize vulnerabilities by severity and exploitability, and help generate remediation plans for container and infrastructure security issues.

Configuration

{"mcpServers":{"trivy":{"command":"npx","args":["trivy-mcp"]}}}

Use Cases

Trivy MCP serves DevSecOps teams integrating security scanning into CI/CD, security engineers analyzing container security, and organizations needing AI-powered vulnerability assessment and remediation guidance.

Key Features

Scan container images for vulnerabilities
Detect IaC misconfigurations (Terraform, K8s)
Find exposed secrets and credentials
Generate SBOM (Software Bill of Materials)
Scan file systems and Git repositories
Support for multiple output formats

Similar MCP Servers

View all →

Trivy MCP

What is Trivy MCP?

Comprehensive Scanning

Configuration

Use Cases

Key Features

Similar MCP Servers

Everything Claude Code

Mcp For Beginners

DesktopCommanderMCP

Docker Hub MCP