Expanso cve-scan

Scan software bill of materials (SBOM) for known CVE vulnerabilities using Expanso Edge pipelines.

cve-scan

Scan SBOM for known CVE vulnerabilities

Requirements

Expanso Edge installed (expanso-edge binary in PATH)
Install via: clawhub install expanso-edge

Usage

CLI Pipeline

# Run standalone
echo '<input>' | expanso-edge run pipeline-cli.yaml

MCP Pipeline

# Start as MCP server
expanso-edge run pipeline-mcp.yaml

Deploy to Expanso Cloud

expanso-cli job deploy https://skills.expanso.io/cve-scan/pipeline-cli.yaml

Files

| File | Purpose | |------|---------| | skill.yaml | Skill metadata (inputs, outputs, credentials) | | pipeline-cli.yaml | Standalone CLI pipeline | | pipeline-mcp.yaml | MCP server pipeline |