Skill Detail
Scan images filesystems and SBOMs for end-of-life software before unsupported components ship with Xeol
Find packages that are out of support even when they do not show up as a classic CVE finding yet.
Security & VerificationMulti-Framework
Security & Verification
Multi-Framework
Security Reviewed
โญ 435 GitHub stars
INSTALL WITH ANY AGENT
npx skills add agentskillexchange/skills --skill scan-images-filesystems-and-sboms-for-end-of-life-software-before-unsupported-components-ship-with-xeol
Works best when you want a reusable capability, not another fragile one-off prompt.
At a glance
Tools required
Xeol CLI, a container image filesystem path or SBOM input, and optional CI integration for release gating.
Install & setup
Install Xeol from the upstream release, package, or container instructions, point it at the target image, directory, or SBOM source, and review the EOL findings before release or deployment.
Author
xeol-io
Publisher
Organization
Last updated
Apr 17, 2026
Quick brief
Use Xeol when an agent needs an end-of-life inventory check over a container image, filesystem, or SBOM, not when the user is running a general vulnerability scanner. The workflow is bounded: inspect the software bill of materials or image contents, identify packages that have reached or are nearing end of support, and return an upgrade or exception list before release. That scope boundary, EOL exposure detection rather than generic CVE scanning, keeps this distinct and skill-shaped.