Trivy MCP Server

Stablesecurity

★70 starsGoaquasecurity

About

Overview

The Trivy MCP Server enables AI agents to perform security scanning using Aqua Trivy. It provides tools for scanning container images, file systems, and IaC configurations for vulnerabilities, misconfigurations, and exposed secrets.

Capabilities

Tools & Capabilities

⚡scan_image

Scan a container image for vulnerabilities

⚡scan_filesystem

Scan a directory for vulnerabilities

⚡scan_iac

Scan infrastructure-as-code files

⚡list_vulnerabilities

List found vulnerabilities

Setup

Installation

bash

Install

go install github.com/aquasecurity/mcp-server-trivy@latest

Examples

Example Usage

javascript

Usage

{
  "mcpServers": {
    "trivy": {
      "command": "mcp-server-trivy"
    }
  }
}

Quick Info

Authoraquasecurity

LanguageGo

StatusStable

Stars★ 70

Last UpdatedFeb 12, 2026