AgentCC is a discovery hub for AI agent capabilities. We index Agent Skills as the primary dataset, and also organize MCP servers and selected AI tools so developers can quickly find, compare, and evaluate what to integrate into their workflows.

What is an Agent Skill?

An Agent Skill is a reusable capability package for an AI agent. It can define workflows, tool usage patterns, domain knowledge, or execution rules that help the agent perform more reliably in a specific task or environment.

How do I use a skill listed on AgentCC?

AgentCC is a resource and discovery layer, not a one-click installer. On each skill page, you should review the repository, file tree, install command, and usage notes, then integrate it according to the runtime or client you are using.

Does AgentCC host or execute skill code for me?

No. AgentCC primarily indexes external repositories and metadata. We help you understand what a skill is, where it comes from, and how it may be used, but execution and security decisions still belong to your own runtime environment.

Are all listed skills safe?

No directory can guarantee absolute safety. AgentCC can help surface repository links, file structures, and metadata, but you should still verify permissions, external dependencies, API usage, and code quality before using a skill in production or on sensitive machines.

Can I submit my own skill, MCP server, or tool?

Yes. AgentCC is designed to be an evolving resource graph. As the submission and curation workflow matures, contributors will be able to recommend high-quality skills, MCP servers, and AI tools into the directory.

主站 Developer Toolstrivy

trivy

Name: trivy
Author: mauromedda

Security vulnerability scanner using Trivy for container images, filesystems, and IaC. Blocks CRITICAL and HIGH severity vulnerabilities before commit. Triggers on "trivy", "vulnerability scan", "security scan", "container scan", "image scan", "sbom", "cve", "dependency scan", "supply chain security", "docker scan", "scan image", "scan container", "check vulnerabilities", "security check", "license scan", "secret scan", "misconfig scan", "iac scan", "terraform scan", "kubernetes scan", "helm scan", "dockerfile scan", "package vulnerabilities", "npm audit", "pip audit", "go mod vulnerabilities", "scan dependencies", "security gate", "compliance scan", "aqua trivy". PROACTIVE: MUST invoke before committing code with new dependencies or container images.

9 Stars0 Installs更新于 94 days agoMIT

About trivy

Category: developer (开发工具) · Author: mauromedda · Version: @main · License: MIT

该 Skill 暂无文档文件。

安装指令

npx skills add mauromedda/trivy

下载解压包

下载 skill.zip

下载完整 Skill 目录，包含 SKILL.md 及所有相关文件

信息

Authormauromedda

Categorydeveloper

Version@main

Last Updated94 days ago

LicenseMIT

在 GitHub 中查看

About trivy

trivy 是由 mauromedda 开发的 AI Agent 技能，属于「developer」分类。 Security vulnerability scanner using Trivy for container images, filesystems, and IaC. Blocks CRITICAL and HIGH severity vulnerabilities before commit. Triggers on "trivy", "vulnerability scan", "security scan", "container scan", "image scan", "sbom", "cve", "dependency scan", "supply chain security", "docker scan", "scan image", "scan container", "check vulnerabilities", "security check", "license scan", "secret scan", "misconfig scan", "iac scan", "terraform scan", "kubernetes scan", "helm scan", "dockerfile scan", "package vulnerabilities", "npm audit", "pip audit", "go mod vulnerabilities", "scan dependencies", "security gate", "compliance scan", "aqua trivy". PROACTIVE: MUST invoke before committing code with new dependencies or container images. 该技能支持 AI Agent 相关能力，可直接集成到兼容的 AI Agent 平台中使用。安装后，Agent 将获得该技能定义的工具、提示词或工作流，从而在对话中自动调用相应功能。