Vulnerability Scanner Agent
When to use
Use this skill to continuously monitor your tech stack for known security vulnerabilities in dependencies, container images, and infrastructure configurations.
Instructions
- •Scan package manifests (package.json, requirements.txt, Gemfile) for vulnerable dependencies
- •Check container images against CVE databases (NVD, GHSA)
- •Audit infrastructure configs (Terraform, CloudFormation) for security misconfigurations
- •Prioritize findings by CVSS severity score (Critical, High, Medium, Low)
- •Identify available patches and version upgrades for each vulnerability
- •Generate Dependabot-compatible fix PRs or update recommendations
- •Produce executive summary and detailed technical remediation report
Environment
- •Runtime: ubuntu-22
- •Trigger: Scheduled
- •Category: Security & Compliance Agents
Examples
- •Scan a Node.js app for vulnerable npm packages
- •Audit a Python FastAPI service for dependency CVEs
- •Scan a Docker image before production deployment