Skip to main content
在 Manus 中运行任何 Skill
一键导入

skill-auditor

星标2
分支0
更新时间2026年6月13日 10:29

Audit a third-party Agent skill for security risks BEFORE installing it. Use this whenever the user wants to install, add, clone, or try a skill from GitHub or from a stranger; asks "is this skill safe?", "is this skill malicious?", "review/scan/audit this skill", "check this skill before I install it"; or points at a skill directory path or repo URL. Scans every SKILL.md, reference, and script for prompt injection, data exfiltration, dangerous shell commands, credential theft, obfuscated payloads, logic bombs, and hidden behavior that does not match the skill's stated purpose, then returns a CRITICAL/WARNING/INFO report and a SAFE TO INSTALL / REVIEW BEFORE INSTALL / DO NOT INSTALL verdict. Trigger even if the user never says the words "skill-auditor".

安装

用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。

SKILL.md
readonly