ClaudSkills / Security / appsec-tools

Container Grype

Quality score: 70/100  ·  Category: Security  ·  Sub-category: appsec-tools
type:scanner
Container vulnerability scanning and dependency risk assessment using Grype with CVSS severity ratings, EPSS exploit probability, and CISA KEV indicators. Use when: (1) Scanning container images and filesystems for known vulnerabilities, (2) Integrating vulnerability scanning into CI/CD pipelines with severity thresholds, (3) Analyzing SBOMs (Syft, SPDX, CycloneDX) for security risks, (4) Prioritizing remediation based on threat metrics (CVSS, EPSS, KEV), (5) Generating vulnerability reports in multiple formats (JSON, SARIF, CycloneDX) for security toolchain integration.

What this skill does

Container Grype is a production-ready Claude Code skill (quality score 70/100) in the appsec-tools sub-category. It ships as a SKILL.md file that Claude Code auto-discovers under ~/.claude/skills/container-grype/ and loads when your prompt matches the skill's trigger.

When to invoke it: Use when: (1) Scanning container images and filesystems for known vulnerabilities, (2) Integrating vulnerability scanning into CI/CD pipelines with severity thresholds, (3) Analyzing SBOMs (Syft, SPDX, CycloneDX) for security risks, (4) Prioritizing remediation based on threat metrics (CVSS, EPSS, KEV), (5) Generating vulnerability reports in multiple formats (JSON, SARIF, CycloneDX) for security toolchain integration.

Who uses this skill

The Container Grype skill is built for security engineers, penetration testers, DevSecOps practitioners, and development teams hardening codebases and infrastructure. It is part of the open ClaudSkills registry, a community-curated catalog of 15,000+ capabilities you can install for Claude Code — the Claude CLI agent.

How to install

Free

Manual install (2 steps)

mkdir -p ~/.claude/skills/container-grype
curl -L https://claudskills.com/skills/container-grype/SKILL.md \
  -o ~/.claude/skills/container-grype/SKILL.md

Or just download SKILL.md directly and drop it into ~/.claude/skills/container-grype/. Claude Code auto-discovers it on next session.

Skills live at ~/.claude/skills/container-grype/SKILL.md on macOS/Linux, or %USERPROFILE%\.claude\skills\container-grype\SKILL.md on Windows. See the full install guide for step-by-step instructions.

Pro

One-click install via the desktop app

The ClaudSkills desktop app installs any skill directly into ~/.claude/skills/ with one click — no terminal required. Pro starts at $9/mo or $149 lifetime.

More Security skills

Browse all Security skills in the ClaudSkills registry, or explore these top-rated picks from the same category:

Browse all Security skills → Top 100 skills
Part of ClaudSkills — the open registry for Claude Code skills.  ·  What's New  ·  Install guide  ·  About  ·  llms.txt

Part of Acreator Store — Adam Lankamer's AI tools: GifPerfect · AspectPerfect · SlomoPerfect · Ucaption · UTagger · AutoXPoster · TestYourSkills