html/api/v76-scripts/skill-trivy-scan.sh

#!/bin/bash
# V89 Skill-to-Agent POC - Opus WIRE 19-avr doctrine 95
# Skill: trivy-scan
# Description: Container vuln scan
# Whitelist-safe: no sudo, no destructive ops, timeout-protected

set -e
timeout 8 bash -c 'trivy image --format json alpine:latest 2>/dev/null | head -c 500 || echo '{"note":"trivy not installed"}'' 2>&1 || echo "{\"skill\":\"trivy-scan\",\"error\":\"timeout_or_error\"}"