scan_skill
Scan any skill, plugin, or MCP server for malware before installing it. Static analysis detects secret exfiltration, install hooks, obfuscated execution, and prompt injection.
Instructions
Statically scan a Claude Code skill, plugin, or MCP server (a local path or a git/GitHub URL) for malware patterns BEFORE installing it: secret/env exfiltration to suspicious hosts, install-time (pre/postinstall) hooks, obfuscated remote execution (eval(atob), base64|sh), prompt injection in tool descriptions/SKILL.md, committed binaries, and auto-approve/skip-permission configs. Static-only — it clones and reads files, never executes the target code, so scanning something malicious is safe. Returns a verdict (clean/suspicious/dangerous) with the flagged files.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| target | Yes | A local path or a git/GitHub URL to scan, e.g. https://github.com/owner/repo or ./my-skill |