- Home
- MCP servers
- Trivy
Trivy
- go
37
GitHub Stars
go
Language
6 months ago
First Indexed
2 months ago
Catalog Refreshed
Documentation & install
Readme and setup notes from the catalogue, plus a client-ready config you can copy for your MCP host.
Installation
Add the following to your MCP client configuration file.
Configuration
View docs{
"mcpServers": {
"aquasecurity-trivy-mcp": {
"command": "trivy",
"args": [
"mcp"
]
}
}
}This MCP server enables Trivy’s security scanning capabilities to be used by any MCP-enabled client, such as IDEs or other tools. It lets you ask in natural language about vulnerabilities, scan local files, container images, or remote repositories, and receive actionable results integrated through standard MCP transports.
How to use
Start the MCP server from your Trivy CLI, then connect your MCP client (IDE or tool) to the running server. You can ask questions in natural language like “Are there any vulnerabilities or misconfigurations in this project?” and perform scans across multiple targets (filesystem, container images, and remote repositories). The server also supports optional integration with Aqua Platform for enhanced scanning and policy assurance.
How to install
Prerequisites you need before starting:
- Install the Trivy CLI on your system.
- Ensure you can run terminal commands from your shell.
- Have an MCP-enabled IDE or client that can connect to an MCP server.
Step-by-step install and start workflow:
# Install the MCP plugin for Trivy
trivy plugin install mcp
# Start the MCP server
trivy mcp
Available tools
natural_language_scan
Allows you to query security aspects in plain language and receive organized results.
filesystem_scan
Performs security scanning on local project directories to identify vulnerabilities and misconfigurations.
image_scan
Scans container images for known vulnerabilities and policy compliance.
remote_repo_analysis
Analyzes security posture of remote repositories and their dependencies.
assurance_integration
Optional integration with Aqua Platform for enhanced scanning capabilities and assurance policy compliance.
transport_flexibility
Supports multiple transports for MCP: stdio, HTTP streamable, and Server-Sent Events (SSE).
ide_integration
Seamless integration with IDEs like VS Code, Cursor, JetBrains IDEs, and Claude Desktop.