Security scanner for AI agent skills and instruction artifacts

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for bvkr from gravatar.com bvkr

Unverified details

These details have not been verified by PyPI
Meta
  • Author: skill-scanner
  • Requires: Python >=3.11
  • Provides-Extra: all , openai , virustotal
Report project as malware

Project description

skill-scanner

CI Publish TestPyPI Publish PyPI zizmor

skill-scanner reviews AI skill and instruction artifacts for security risk using:

  • OpenAI analysis
  • VirusTotal analysis

Requirements

  • Python 3.11+
  • uv
  • OpenAI and/or VirusTotal API key (at least one)

Install (from source)

uv sync --all-extras --group dev

Run with:

uv run skill-scanner --help

Alias:

uv run skillscan --help

What gets scanned

By default, discover and scan detect markdown-based skill/instruction artifacts (for example SKILL.md, AGENTS.md, CLAUDE.md, *.instructions.md, *.prompt.md, *.agent.md, .mdc).

Use --path to target a specific file or folder.

Quick start

# See targets
uv run skill-scanner discover --format json

# Verify key/model configuration
uv run skill-scanner doctor

# Run a combined scan (if both keys are configured)
uv run skill-scanner scan --format summary

Key configuration and analyzer selection

scan requires at least one analyzer enabled.

  • If only OPENAI_API_KEY is available, AI runs and VT is disabled.
  • If only VT_API_KEY is available, VT runs and AI is disabled.
  • If both keys are available, VT findings are included and VT context is passed into AI analysis.
  • You can disable either analyzer with --no-ai or --no-vt.

API key safety

Use 1Password secret references instead of plaintext secrets:

OPENAI_API_KEY=op://Developer/OpenAI/api_key
VT_API_KEY=op://Developer/VirusTotal/api_key

Run the scanner through 1Password CLI so references are resolved at runtime:

op run --env-file=.env -- uv run skill-scanner scan --format summary

Security best practice:

  • Prefer a 1Password Service Account scoped to only the vault/items required for scanning (least privilege).

Reference:

Output formats

scan --format supports:

  • table (default)
  • summary
  • json
  • sarif

You can write output to a file with --output <path>.

Useful commands

# List providers
uv run skill-scanner providers

# Scan one path only
uv run skill-scanner scan --path ./some/skill/folder --format summary

# List discovered targets without running analyzers
uv run skill-scanner scan --list-targets

# Scan only selected discovered targets (repeat --target)
uv run skill-scanner scan --target /absolute/path/to/SKILL.md --target /absolute/path/to/AGENTS.md --format summary

# Filter to medium+
uv run skill-scanner scan --min-severity medium --format summary

# Non-zero exit if high+ findings exist
uv run skill-scanner scan --fail-on high --format summary

--list-targets can be used without API keys because it only runs discovery and exits.

Exit behavior

  • 0: scan completed and fail threshold not hit
  • 1: --fail-on threshold matched
  • 2: no analyzers enabled (for example missing keys combined with flags), or --target did not match any discovered target

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for bvkr from gravatar.com bvkr

Unverified details

These details have not been verified by PyPI
Meta
  • Author: skill-scanner
  • Requires: Python >=3.11
  • Provides-Extra: all , openai , virustotal

Release history Release notifications | RSS feed

0.3.2

0.3.1

0.3.0

0.2.4

0.2.3

0.2.2

0.2.1

0.2.0

0.1.7

0.1.6

0.1.5

0.1.4

0.1.3

0.1.2

This version

0.1.1

0.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

skill_scanner-0.1.1.tar.gz (127.5 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

skill_scanner-0.1.1-py3-none-any.whl (29.1 kB view details)

Uploaded Python 3

File details

Details for the file skill_scanner-0.1.1.tar.gz.

File metadata

  • Download URL: skill_scanner-0.1.1.tar.gz
  • Upload date:
  • Size: 127.5 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for skill_scanner-0.1.1.tar.gz
Algorithm Hash digest
SHA256 88249bcee7f30b3345b4b6636859b69b6128a66d7101178e3e546075d33808e8
MD5 c0cbd67e54960fca0016fc8200d4264d
BLAKE2b-256 5f6923eee0f14144fec7484399c621a0ef9cf1ce6662c0778053da3b12935172

See more details on using hashes here.

Provenance

The following attestation bundles were made for skill_scanner-0.1.1.tar.gz:

Publisher: release.yml on thedevappsecguy/skill-scanner

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file skill_scanner-0.1.1-py3-none-any.whl.

File metadata

  • Download URL: skill_scanner-0.1.1-py3-none-any.whl
  • Upload date:
  • Size: 29.1 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for skill_scanner-0.1.1-py3-none-any.whl
Algorithm Hash digest
SHA256 5ea964f067cd03e4796a0baba80da81e2241ff7c5f40abc3e24c27000a3e679e
MD5 0d83f18139034ac6f521f976860e0eb9
BLAKE2b-256 f0b9e570631941617c4b40689ef53db982f73a121b5b9bdc7661e2bee6f1f013

See more details on using hashes here.

Provenance

The following attestation bundles were made for skill_scanner-0.1.1-py3-none-any.whl:

Publisher: release.yml on thedevappsecguy/skill-scanner

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page