Claude Skill
cisco-ai-defense/skill-scanner
Open-source security scanner for Claude Skills by Cisco AI Defense. Analyze and assess AI agent skills for vulnerabilities and security compliance.
Overview
Repository
Install this Skill
pip install cisco-ai-skill-scannerRegistry
pip install cisco-ai-skill-scannerpip install cisco-ai-skill-scanner[bedrock]pip install cisco-ai-skill-scanner[google]pip install cisco-ai-skill-scanner[vertex]pip install cisco-ai-skill-scanner[azure]
Summary
A security scanner for Claude Skills, developed by Cisco AI Defense, designed to analyze and assess the security of AI agent skills.
Claude Skill安全扫描器
Key features
- Security scanning for Claude Skills
- Python-based implementation
- Agent skill analysis
- Security assessment tools
- Open-source security framework
Use cases
- Security auditing of AI agent skills
- Vulnerability detection in Claude Skills
- Compliance checking for agent deployments
- Security research on AI skills
- Automated security testing
README excerpt
# Skill Scanner [](https://opensource.org/licenses/Apache-2.0) [](https://www.python.org/downloads/) [](https://pypi.org/project/cisco-ai-skill-scanner/) [](https://github.com/cisco-ai-defense/skill-scanner/actions/workflows/python-tests.yml) [](https://discord.com/invite/nKWtDcXxtx) [](https://www.cisco.com/site/us/en/products/security/ai-defense/index.html) [](https://learn-cloudsecurity.cisco.com/ai-security-framework) [](https://deepwiki.com/cisco-ai-defense/skill-scanner) A best-effort security scanner for AI Agent Skills that detects prompt injection, data exfiltration, and malicious code patterns. Combines **pattern-based detection** (YAML + YARA), **LLM-as-a-judge**, and **behavioral dataflow analysis** to maximize detection coverage of probable threats while minimizing false positives. > **Important:** This scanner provides best-effort detection, not comprehensive or complete coverage. A scan that returns no findings does not guarantee that a skill is free of all threats. See [Scope and Limitations](#scope-and-limitations) below. Supports [OpenAI Codex Skills](https://openai.github.io/codex/) and [Cursor Agent Skills](https://docs