SBOM Generator (Trivy)

MCP-SBOM Server is a Python-based implementation that performs Trivy scans on container images to generate Software Bill of Materials (SBOM) in CycloneDX format. Built using the FastMCP library, it provides an asynchronous interface for executing Trivy scanner commands and processing the resulting SBOM data. The server exposes a single tool endpoint that accepts container image references, executes the scan, and returns detailed component information including package metadata, licenses, and vulnerability data. This implementation is particularly valuable for DevOps and security teams who need to analyze container dependencies, comply with security requirements, or integrate SBOM generation into their CI/CD pipelines.