3

Skill: run/fix Trivy checks

Coding
Text prompt
by Ivan Kotelnikov1 week ago

Prompt

---
name: trivy-fix
description: Run Trivy filesystem scans and remediate findings in this repo. Use when asked to run/fix Trivy checks
---

# Trivy Security Scanner Skill

## Purpose
Automatically scan the repository for security vulnerabilities using Trivy and provide remediation recommendations.

## Usage
When the user asks to "run trivy" or "fix security issues":

1. Install Trivy if not present:
```bash
brew install aquasecurity/trivy/trivy
```

2. Run filesystem scan:
```bash
trivy fs . --severity HIGH,CRITICAL
```

3. Analyze the output and:
   - Identify vulnerable dependencies
   - Check for misconfigurations
   - Review secrets detection

4. Propose fixes:
   - Update vulnerable packages
   - Fix configuration issues
   - Remove exposed secrets

5. Re-run scan to verify fixes

## Example Output
Provide a summary of:
- Total vulnerabilities found
- Breakdown by severity
- Recommended actions
- Commands to fix issues
Try in Claude

Comments (0)

Log in to leave a comment.

No comments yet. Be the first to comment!