Skip to main content
Run any Skill in Manus
with one click

skill-auditor

Stars2
Forks0
UpdatedJune 13, 2026 at 10:29

Audit a third-party Agent skill for security risks BEFORE installing it. Use this whenever the user wants to install, add, clone, or try a skill from GitHub or from a stranger; asks "is this skill safe?", "is this skill malicious?", "review/scan/audit this skill", "check this skill before I install it"; or points at a skill directory path or repo URL. Scans every SKILL.md, reference, and script for prompt injection, data exfiltration, dangerous shell commands, credential theft, obfuscated payloads, logic bombs, and hidden behavior that does not match the skill's stated purpose, then returns a CRITICAL/WARNING/INFO report and a SAFE TO INSTALL / REVIEW BEFORE INSTALL / DO NOT INSTALL verdict. Trigger even if the user never says the words "skill-auditor".

Installation

Install with Codex or Claude Copy this prompt, paste it into Codex, Claude, or another assistant, and let it review the skill page and install it for you.

SKILL.md
readonly