@aiclude/security-skill 2.1.0 → 2.1.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +4 -4
- package/SKILL.md +5 -5
- package/package.json +3 -3
package/README.md
CHANGED
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
|
|
3
3
|
Security vulnerability scanner for MCP Servers and AI Agent Skills. Provides the `/security-scan` slash command for Claude Code.
|
|
4
4
|
|
|
5
|
-
Queries the [
|
|
5
|
+
Queries the [AICLUDE scan database](https://vs.aiclude.com) for existing vulnerability reports. If no report exists, the target is automatically registered and scanned server-side.
|
|
6
6
|
|
|
7
7
|
## Installation
|
|
8
8
|
|
|
@@ -41,7 +41,7 @@ const report = await handler.lookup({
|
|
|
41
41
|
|
|
42
42
|
## How It Works
|
|
43
43
|
|
|
44
|
-
1. Sends the package name to the
|
|
44
|
+
1. Sends the package name to the AICLUDE scan API
|
|
45
45
|
2. If a scan report exists, returns it immediately
|
|
46
46
|
3. If not, registers the target for server-side scanning
|
|
47
47
|
4. Waits for the scan to complete and returns the results
|
|
@@ -50,7 +50,7 @@ Only the package name and type are sent. No source code, files, or credentials a
|
|
|
50
50
|
|
|
51
51
|
## Server-Side Scan Engines
|
|
52
52
|
|
|
53
|
-
The
|
|
53
|
+
The AICLUDE server runs 7 engines on registered targets:
|
|
54
54
|
|
|
55
55
|
| Engine | What It Detects |
|
|
56
56
|
|--------|----------------|
|
|
@@ -78,4 +78,4 @@ Reports include:
|
|
|
78
78
|
|
|
79
79
|
## License
|
|
80
80
|
|
|
81
|
-
|
|
81
|
+
Apache 2.0 — [AICLUDE Inc.](https://aiclude.com)
|
package/SKILL.md
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
---
|
|
2
2
|
name: aiclude-vulns-scan
|
|
3
|
-
description: Search security vulnerability scan results for MCP Servers and AI Agent Skills from the
|
|
3
|
+
description: Search security vulnerability scan results for MCP Servers and AI Agent Skills from the AICLUDE scan database.
|
|
4
4
|
tags: [security, vulnerability, scanner, mcp, ai-agent]
|
|
5
5
|
homepage: https://vs.aiclude.com
|
|
6
6
|
repository: https://github.com/aiclude/asvs
|
|
7
7
|
---
|
|
8
8
|
|
|
9
|
-
# /security-scan -
|
|
9
|
+
# /security-scan - AICLUDE Vulnerability Scanner
|
|
10
10
|
|
|
11
|
-
Search the
|
|
11
|
+
Search the AICLUDE security scan database for vulnerability reports on MCP Servers and AI Agent Skills. If no report exists, the target is registered and scanned automatically.
|
|
12
12
|
|
|
13
13
|
## Usage
|
|
14
14
|
|
|
@@ -30,7 +30,7 @@ Search the AIclude security scan database for vulnerability reports on MCP Serve
|
|
|
30
30
|
|
|
31
31
|
## How It Works
|
|
32
32
|
|
|
33
|
-
1. Sends the package name to the
|
|
33
|
+
1. Sends the package name to the AICLUDE scan API
|
|
34
34
|
2. If a scan report exists, returns it immediately
|
|
35
35
|
3. If not, registers the target for scanning
|
|
36
36
|
4. Waits for the scan to complete and returns the results
|
|
@@ -52,4 +52,4 @@ Only the package name and type are sent. No source code or credentials are trans
|
|
|
52
52
|
|
|
53
53
|
## License
|
|
54
54
|
|
|
55
|
-
|
|
55
|
+
Apache 2.0 - AICLUDE Inc.
|
package/package.json
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@aiclude/security-skill",
|
|
3
|
-
"version": "2.1.
|
|
4
|
-
"description": "
|
|
3
|
+
"version": "2.1.1",
|
|
4
|
+
"description": "AICLUDE Security Vulnerability Scanner - Claude Code Skill for querying the AICLUDE scan database",
|
|
5
5
|
"type": "module",
|
|
6
6
|
"main": "./dist/index.js",
|
|
7
7
|
"types": "./dist/index.d.ts",
|
|
@@ -24,7 +24,7 @@
|
|
|
24
24
|
"sca",
|
|
25
25
|
"malware"
|
|
26
26
|
],
|
|
27
|
-
"license": "
|
|
27
|
+
"license": "Apache-2.0",
|
|
28
28
|
"author": "AICLUDE Inc. <dev@aiclude.com>",
|
|
29
29
|
"repository": {
|
|
30
30
|
"type": "git",
|