Skill Auditor

A security audit tool for MCP Servers and AI Skills. Implements the "Skill-First Protocol" to ensure safe usage of third-party AI tools.

Features

• Task Decomposition: Break down user tasks and check local tools
• Market Search: Search GitHub and Smithery.ai for existing MCP Servers
• Security Audit: 6-point security check (README, backdoors, privacy, license, dependencies, source code)
• Risk Assessment: Automated risk level classification (Low/Medium/High)

Tools

1. audit_skill

Full Skill-First Protocol pipeline: decompose task, check local tools, search market, audit top 3 skills, output risk report.

2. search_market_skills

Search GitHub and Smithery.ai for existing MCP Servers/Skills related to a task.