{"skill":{"slug":"trivy-security-scanner","displayName":"Trivy Security Scanner","summary":"Run Trivy vulnerability scans on containers, filesystems, and IaC — then triage findings by exploitability, reachability, and business impact with AI-powered...","tags":{"latest":"1.0.0"},"stats":{"comments":0,"downloads":139,"installsAllTime":0,"installsCurrent":0,"stars":0,"versions":1},"createdAt":1777650586444,"updatedAt":1778492821950},"latestVersion":{"version":"1.0.0","createdAt":1777650586444,"changelog":"Initial release of Trivy Security Scanner skill.\n\n- Run Trivy vulnerability scans on containers, filesystems, Git repositories, Kubernetes clusters, IaC, and SBOMs.\n- AI-powered triage: prioritize findings using EPSS scores, CISA KEV data, reachability, and business context.\n- Filter and summarize vulnerabilities by severity, exploitability, fix availability, and compliance framework mapping.\n- Guidance for actionable remediation, including dependency and base image upgrades, and Dockerfile hardening.\n- Supports .trivyignore for accepted risks; generates compliance reports (e.g., SOC2, PCI-DSS, HIPAA, CIS).","license":"MIT-0"},"metadata":null,"owner":{"handle":"charlie-morrison","userId":"s17cttbdxry5kkyafjw983mq8s83p4y3","displayName":"charlie-morrison","image":"https://avatars.githubusercontent.com/u/271589886?v=4"},"moderation":null}