Automated security scanning for dependencies, code, containers with Trivy, Snyk, npm audit. Use for CI/CD security gates, pre-deployment audits, compliance requirements, or encountering CVE detection, outdated packages, license compliance, SBOM generation errors.
This skill does not declare a tool allowlist. The agent host applies whatever default tools are available at runtime.
SKILL.md / Manifest
https://raw.githubusercontent.com/secondsky/claude-skills/main/plugins/vulnerability-scanning/skills/vulnerability-scanning/SKILL.mdRegistry
github (via claudemarketplaces.com)