skill-defender
Installation
SKILL.md
Skill Defender — Malicious Pattern Scanner
When to Run
Automatic Triggers
- New skill installed — Immediately run
scan_skill.pyagainst it before allowing use - Skill updated — Re-scan after any file changes in a skill directory
- Periodic audit — Run batch scan on all installed skills when requested
Manual Triggers
- User says "scan skill X" → scan that specific skill
- User says "scan all skills" → batch scan all skills
- User says "security check" or "audit skills" → same as above
Scripts
scripts/scan_skill.py — Single Skill Scanner
Scans one skill directory for malicious patterns. Produces JSON or human-readable output.