Claude Skill
cisco-ai-defense/skill-scanner
思科AI防御开发的开源Claude Skill安全扫描器。分析和评估AI代理技能,检测漏洞并确保安全合规性。
概览
仓库信息
安装这个 Skill
pip install cisco-ai-skill-scannerRegistry 信息
pip install cisco-ai-skill-scannerpip install cisco-ai-skill-scanner[bedrock]pip install cisco-ai-skill-scanner[google]pip install cisco-ai-skill-scanner[vertex]pip install cisco-ai-skill-scanner[azure]
项目简介
由思科AI防御部门开发的Claude Skill安全扫描器,用于分析和评估AI代理技能的安全性。
Security Scanner for Agent Skills
要点
- Claude Skill安全扫描
- 基于Python实现
- 代理技能分析
- 安全评估工具
- 开源安全框架
使用场景
- AI代理技能安全审计
- Claude Skill漏洞检测
- 代理部署合规性检查
- AI技能安全研究
- 自动化安全测试
README 摘要
# Skill Scanner [](https://opensource.org/licenses/Apache-2.0) [](https://www.python.org/downloads/) [](https://pypi.org/project/cisco-ai-skill-scanner/) [](https://github.com/cisco-ai-defense/skill-scanner/actions/workflows/python-tests.yml) [](https://discord.com/invite/nKWtDcXxtx) [](https://www.cisco.com/site/us/en/products/security/ai-defense/index.html) [](https://learn-cloudsecurity.cisco.com/ai-security-framework) [](https://deepwiki.com/cisco-ai-defense/skill-scanner) A best-effort security scanner for AI Agent Skills that detects prompt injection, data exfiltration, and malicious code patterns. Combines **pattern-based detection** (YAML + YARA), **LLM-as-a-judge**, and **behavioral dataflow analysis** to maximize detection coverage of probable threats while minimizing false positives. > **Important:** This scanner provides best-effort detection, not comprehensive or complete coverage. A scan that returns no findings does not guarantee that a skill is free of all threats. See [Scope and Limitations](#scope-and-limitations) below. Supports [OpenAI Codex Skills](https://openai.github.io/codex/) and [Cursor Agent Skills](https://docs