MCP SBOM Server

MCPOpen Source22.8

by gkhays • Automation & Orchestration

An MCP server that performs Trivy scans and produces SBOMs in CycloneDX format.

Example Use Cases

1
Perform security scans and generate SBOMs for software projects
2
Integrate Trivy scan results into their MCP infrastructure
3
A structured and automated approach to vulnerability management

Description

The MCP SBOM Server is designed to integrate the Trivy security scanner with the Model Context Protocol (MCP) to generate Software Bill of Materials (SBOM) in CycloneDX format. It uses the `uv` tool to manage its operations and supports debugging with the MCP Inspector. This server is particularly useful for those needing to assess and manage the security posture of their software systems efficiently.

Quick Actions

View on GitHub

Security

Scanned 2 month(s) ago

Risk Level

MINIMAL

Read-only data retrieval, no side effects

Trust Score

D44/100

6/17 checks passed

Scores are informational only and provided “as is” without warranty. AgentHotspot assumes no liability for actions taken based on these ratings.

Quick Stats

Service TypeMCP

Pricing ModelUnknown

Capabilities0 Tools / 0 Prompts / 0 Resources

Ownergkhays

CategoryAutomation & Orchestration

DependenciesStandalone