<p>A single Docker image (<code>kpericak/ai-security-toolkit-1:0.2</code>) that
bundles three security scanning tools. Designed for AI agents to run
as part of development workflows.</p>
<h2 id="bundled-tools">Bundled Tools</h2>
<table>
<thead>
<tr>
<th>Tool</th>
<th>Purpose</th>
<th>Type</th>
</tr>
</thead>
<tbody>
<tr>
<td>semgrep</td>
<td>Static analysis (SAST)</td>
<td>Code patterns</td>
</tr>
<tr>
<td>trivy</td>
<td>Vulnerability scanning (SCA)</td>
<td>Dependencies, containers, IaC</td>
</tr>
<tr>
<td>gitleaks</td>
<td>Secret detection</td>
<td>Git history</td>
</tr>
</tbody>
</table>
<h2 id="usage">Usage</h2>
<p>Mount the project directory as <code>/workspace</code>:</p>
<pre><code class="language-bash"># Static analysis
docker run --rm -v "$(pwd):/workspace:ro" \
  kpericak/ai-security-toolkit-1:0.2 \
  -c "semgrep scan --config auto /workspace"

# Vulnerability scan
docker run --rm -v "$(pwd):/workspace:ro" \
  kpericak/ai-security-toolkit-1:0.2 \
  -c "trivy fs --scanners vuln,secret,misconfig /workspace"

# Secret scan
docker run --rm -v "$(pwd):/workspace:ro" \
  kpericak/ai-security-toolkit-1:0.2 \
  -c "cd /workspace &#x26;&#x26; gitleaks detect --source ."
</code></pre>
<h2 id="related-blog-posts">Related Blog Posts</h2>
<ul>
<li><a href="/ai-security-toolkit.html">Security Toolkit for AI Agents</a>:
build process and usage guide</li>
</ul>


Docker image bundling semgrep, trivy, and gitleaks for AI-agent-accessible security scanning. Image: kpericak/ai-security-toolkit-1.

Kyle Pericak

"It works in my environment"

Security Toolkit

Bundled Tools

Usage

Tool	Purpose	Type
semgrep	Static analysis (SAST)	Code patterns
trivy	Vulnerability scanning (SCA)	Dependencies, containers, IaC
gitleaks	Secret detection	Git history