@shnitzel/plugscout 0.3.2 → 0.3.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (133) hide show
  1. package/README.md +16 -15
  2. package/config/registries.json +731 -139
  3. package/data/catalog/items.json +12648 -5624
  4. package/data/catalog/mcps.json +12625 -4985
  5. package/data/catalog/skills.json +965 -691
  6. package/data/catalog/sync-state.json +19 -19
  7. package/dist/catalog/adapter.js +4 -0
  8. package/dist/catalog/adapters/awesome-claude-code-v1.js +150 -0
  9. package/dist/cli.js +0 -0
  10. package/dist/lib/validation/contracts.js +2 -1
  11. package/package.json +6 -5
  12. package/data/security-reports/2026-02-06/report.json +0 -8
  13. package/data/security-reports/2026-02-10/report.json +0 -9
  14. package/data/security-reports/2026-02-11/report.json +0 -9
  15. package/data/security-reports/2026-02-12/report.json +0 -9
  16. package/data/security-reports/2026-02-13/report.json +0 -8
  17. package/data/security-reports/2026-02-14/report.json +0 -8
  18. package/data/security-reports/2026-02-23/report.json +0 -8
  19. package/data/security-reports/2026-02-25/report.json +0 -8
  20. package/data/security-reports/2026-02-26/report.json +0 -8
  21. package/data/security-reports/2026-03-10/report.json +0 -8
  22. package/data/security-reports/audits/2026-02-06T10-17-33-872Z-mcp_remote-browser.json +0 -8
  23. package/data/security-reports/audits/2026-02-06T10-17-33-881Z-mcp_remote-browser.json +0 -8
  24. package/data/security-reports/audits/2026-02-10T20-22-24-474Z-mcp_remote-browser.json +0 -8
  25. package/data/security-reports/audits/2026-02-10T20-22-24-483Z-mcp_remote-browser.json +0 -8
  26. package/data/security-reports/audits/2026-02-10T20-42-12-305Z-mcp_remote-browser.json +0 -8
  27. package/data/security-reports/audits/2026-02-10T20-42-12-319Z-mcp_remote-browser.json +0 -8
  28. package/data/security-reports/audits/2026-02-10T20-43-15-728Z-mcp_remote-browser.json +0 -8
  29. package/data/security-reports/audits/2026-02-10T20-43-15-738Z-mcp_remote-browser.json +0 -8
  30. package/data/security-reports/audits/2026-02-10T21-22-14-047Z-mcp_remote-browser.json +0 -8
  31. package/data/security-reports/audits/2026-02-10T21-22-14-051Z-mcp_remote-browser.json +0 -8
  32. package/data/security-reports/audits/2026-02-10T21-29-59-237Z-mcp_remote-browser.json +0 -8
  33. package/data/security-reports/audits/2026-02-10T21-29-59-243Z-mcp_remote-browser.json +0 -8
  34. package/data/security-reports/audits/2026-02-11T20-21-51-074Z-mcp_remote-browser.json +0 -8
  35. package/data/security-reports/audits/2026-02-11T20-21-51-123Z-mcp_remote-browser.json +0 -8
  36. package/data/security-reports/audits/2026-02-11T20-28-33-021Z-mcp_remote-browser.json +0 -8
  37. package/data/security-reports/audits/2026-02-11T20-28-33-026Z-mcp_remote-browser.json +0 -8
  38. package/data/security-reports/audits/2026-02-11T20-34-43-623Z-mcp_remote-browser.json +0 -8
  39. package/data/security-reports/audits/2026-02-11T20-34-43-625Z-mcp_remote-browser.json +0 -8
  40. package/data/security-reports/audits/2026-02-11T21-06-33-281Z-mcp_remote-browser.json +0 -8
  41. package/data/security-reports/audits/2026-02-11T21-06-33-285Z-mcp_remote-browser.json +0 -8
  42. package/data/security-reports/audits/2026-02-11T21-08-58-836Z-mcp_remote-browser.json +0 -8
  43. package/data/security-reports/audits/2026-02-11T21-08-58-843Z-mcp_remote-browser.json +0 -8
  44. package/data/security-reports/audits/2026-02-12T12-26-07-150Z-mcp_remote-browser.json +0 -8
  45. package/data/security-reports/audits/2026-02-12T12-26-07-159Z-mcp_remote-browser.json +0 -8
  46. package/data/security-reports/audits/2026-02-12T14-37-36-565Z-mcp_remote-browser.json +0 -8
  47. package/data/security-reports/audits/2026-02-12T14-37-36-569Z-mcp_remote-browser.json +0 -8
  48. package/data/security-reports/audits/2026-02-12T14-47-32-103Z-mcp_remote-browser.json +0 -8
  49. package/data/security-reports/audits/2026-02-12T14-47-32-213Z-mcp_remote-browser.json +0 -8
  50. package/data/security-reports/audits/2026-02-12T14-47-47-769Z-mcp_filesystem.json +0 -8
  51. package/data/security-reports/audits/2026-02-12T15-05-49-085Z-mcp_remote-browser.json +0 -8
  52. package/data/security-reports/audits/2026-02-12T15-05-49-087Z-mcp_remote-browser.json +0 -8
  53. package/data/security-reports/audits/2026-02-12T16-37-42-204Z-mcp_remote-browser.json +0 -8
  54. package/data/security-reports/audits/2026-02-12T16-37-42-243Z-mcp_remote-browser.json +0 -8
  55. package/data/security-reports/audits/2026-02-12T16-47-16-589Z-mcp_remote-browser.json +0 -8
  56. package/data/security-reports/audits/2026-02-12T16-47-16-596Z-mcp_remote-browser.json +0 -8
  57. package/data/security-reports/audits/2026-02-12T17-38-24-899Z-mcp_remote-browser.json +0 -8
  58. package/data/security-reports/audits/2026-02-12T17-38-24-905Z-mcp_remote-browser.json +0 -8
  59. package/data/security-reports/audits/2026-02-12T17-56-00-835Z-mcp_remote-browser.json +0 -8
  60. package/data/security-reports/audits/2026-02-12T17-56-00-840Z-mcp_remote-browser.json +0 -8
  61. package/data/security-reports/audits/2026-02-12T18-19-26-005Z-mcp_remote-browser.json +0 -8
  62. package/data/security-reports/audits/2026-02-12T18-19-26-008Z-mcp_remote-browser.json +0 -8
  63. package/data/security-reports/audits/2026-02-12T18-34-38-642Z-mcp_remote-browser.json +0 -8
  64. package/data/security-reports/audits/2026-02-12T18-34-38-645Z-mcp_remote-browser.json +0 -8
  65. package/data/security-reports/audits/2026-02-13T05-44-27-648Z-mcp_remote-browser.json +0 -8
  66. package/data/security-reports/audits/2026-02-13T05-44-27-656Z-mcp_remote-browser.json +0 -8
  67. package/data/security-reports/audits/2026-02-13T05-48-50-827Z-mcp_remote-browser.json +0 -8
  68. package/data/security-reports/audits/2026-02-13T05-48-50-900Z-mcp_remote-browser.json +0 -8
  69. package/data/security-reports/audits/2026-02-13T10-53-33-850Z-mcp_remote-browser.json +0 -8
  70. package/data/security-reports/audits/2026-02-13T10-53-33-853Z-mcp_remote-browser.json +0 -8
  71. package/data/security-reports/audits/2026-02-14T17-51-27-279Z-mcp_remote-browser.json +0 -8
  72. package/data/security-reports/audits/2026-02-14T17-51-27-282Z-mcp_remote-browser.json +0 -8
  73. package/data/security-reports/audits/2026-02-14T19-43-39-991Z-mcp_remote-browser.json +0 -8
  74. package/data/security-reports/audits/2026-02-14T19-43-39-997Z-mcp_remote-browser.json +0 -8
  75. package/data/security-reports/audits/2026-02-23T19-24-43-515Z-mcp_remote-browser.json +0 -8
  76. package/data/security-reports/audits/2026-02-23T19-24-43-518Z-mcp_remote-browser.json +0 -8
  77. package/data/security-reports/audits/2026-02-25T14-45-02-763Z-mcp_remote-browser.json +0 -8
  78. package/data/security-reports/audits/2026-02-25T14-45-02-778Z-mcp_remote-browser.json +0 -8
  79. package/data/security-reports/audits/2026-02-25T14-46-58-957Z-mcp_remote-browser.json +0 -8
  80. package/data/security-reports/audits/2026-02-25T14-46-58-960Z-mcp_remote-browser.json +0 -8
  81. package/data/security-reports/audits/2026-02-25T14-57-37-133Z-mcp_remote-browser.json +0 -8
  82. package/data/security-reports/audits/2026-02-25T14-57-37-139Z-mcp_remote-browser.json +0 -8
  83. package/data/security-reports/audits/2026-02-25T15-03-23-507Z-mcp_remote-browser.json +0 -8
  84. package/data/security-reports/audits/2026-02-25T15-03-23-513Z-mcp_remote-browser.json +0 -8
  85. package/data/security-reports/audits/2026-02-25T15-03-41-157Z-mcp_remote-browser.json +0 -8
  86. package/data/security-reports/audits/2026-02-25T15-03-41-162Z-mcp_remote-browser.json +0 -8
  87. package/data/security-reports/audits/2026-02-25T15-05-18-042Z-mcp_remote-browser.json +0 -8
  88. package/data/security-reports/audits/2026-02-25T15-05-18-048Z-mcp_remote-browser.json +0 -8
  89. package/data/security-reports/audits/2026-02-25T15-39-08-519Z-mcp_remote-browser.json +0 -8
  90. package/data/security-reports/audits/2026-02-25T15-39-08-526Z-mcp_remote-browser.json +0 -8
  91. package/data/security-reports/audits/2026-02-25T18-35-54-463Z-mcp_remote-browser.json +0 -8
  92. package/data/security-reports/audits/2026-02-25T18-35-54-466Z-mcp_remote-browser.json +0 -8
  93. package/data/security-reports/audits/2026-02-26T05-52-21-092Z-mcp_remote-browser.json +0 -8
  94. package/data/security-reports/audits/2026-02-26T05-52-21-093Z-mcp_remote-browser.json +0 -8
  95. package/data/security-reports/audits/2026-02-26T05-52-27-076Z-mcp_remote-browser.json +0 -8
  96. package/data/security-reports/audits/2026-02-26T05-52-27-079Z-mcp_remote-browser.json +0 -8
  97. package/data/security-reports/audits/2026-02-26T05-52-27-084Z-mcp_remote-browser.json +0 -8
  98. package/data/security-reports/audits/2026-02-26T05-52-27-086Z-mcp_remote-browser.json +0 -8
  99. package/data/security-reports/audits/2026-02-26T05-52-37-249Z-mcp_remote-browser.json +0 -8
  100. package/data/security-reports/audits/2026-02-26T05-52-37-258Z-mcp_remote-browser.json +0 -8
  101. package/data/security-reports/audits/2026-02-26T05-52-37-259Z-mcp_remote-browser.json +0 -8
  102. package/data/security-reports/audits/2026-02-26T05-52-37-274Z-mcp_remote-browser.json +0 -8
  103. package/data/security-reports/audits/2026-02-26T05-53-28-389Z-mcp_remote-browser.json +0 -8
  104. package/data/security-reports/audits/2026-02-26T05-53-28-391Z-mcp_remote-browser.json +0 -8
  105. package/data/security-reports/audits/2026-02-26T05-53-33-868Z-mcp_remote-browser.json +0 -8
  106. package/data/security-reports/audits/2026-02-26T05-53-33-880Z-mcp_remote-browser.json +0 -8
  107. package/data/security-reports/audits/2026-02-26T05-53-33-892Z-mcp_remote-browser.json +0 -8
  108. package/data/security-reports/audits/2026-02-26T05-53-33-900Z-mcp_remote-browser.json +0 -8
  109. package/data/security-reports/audits/2026-02-26T05-53-43-064Z-mcp_remote-browser.json +0 -8
  110. package/data/security-reports/audits/2026-02-26T05-53-43-066Z-mcp_remote-browser.json +0 -8
  111. package/data/security-reports/audits/2026-02-26T05-53-43-068Z-mcp_remote-browser.json +0 -8
  112. package/data/security-reports/audits/2026-02-26T14-55-47-466Z-claude-plugin_workspace-ops.json +0 -8
  113. package/data/security-reports/audits/2026-02-26T14-55-47-468Z-copilot-extension_repo-security.json +0 -8
  114. package/data/security-reports/audits/2026-02-26T16-55-59-431Z-mcp_remote-browser.json +0 -8
  115. package/data/security-reports/audits/2026-02-26T16-55-59-432Z-mcp_remote-browser.json +0 -8
  116. package/data/security-reports/audits/2026-02-26T16-55-59-435Z-mcp_remote-browser.json +0 -8
  117. package/data/security-reports/audits/2026-02-26T16-55-59-439Z-mcp_remote-browser.json +0 -8
  118. package/data/security-reports/audits/2026-02-26T16-56-08-566Z-mcp_remote-browser.json +0 -8
  119. package/data/security-reports/audits/2026-02-26T16-56-08-570Z-mcp_remote-browser.json +0 -8
  120. package/data/security-reports/audits/2026-02-26T16-56-08-589Z-mcp_remote-browser.json +0 -8
  121. package/data/security-reports/audits/2026-02-26T16-56-08-591Z-mcp_remote-browser.json +0 -8
  122. package/data/security-reports/audits/2026-02-26T16-56-47-356Z-mcp_remote-browser.json +0 -8
  123. package/data/security-reports/audits/2026-02-26T16-56-47-358Z-mcp_remote-browser.json +0 -8
  124. package/data/security-reports/audits/2026-02-26T16-56-53-607Z-mcp_remote-browser.json +0 -8
  125. package/data/security-reports/audits/2026-02-26T16-56-53-612Z-mcp_remote-browser.json +0 -8
  126. package/data/security-reports/audits/2026-02-26T16-56-53-624Z-mcp_remote-browser.json +0 -8
  127. package/data/security-reports/audits/2026-02-26T16-56-53-628Z-mcp_remote-browser.json +0 -8
  128. package/data/security-reports/audits/2026-02-26T16-57-09-879Z-mcp_remote-browser.json +0 -8
  129. package/data/security-reports/audits/2026-02-26T16-57-09-881Z-mcp_remote-browser.json +0 -8
  130. package/data/security-reports/audits/2026-02-26T16-57-10-846Z-mcp_remote-browser.json +0 -8
  131. package/data/security-reports/audits/2026-02-26T16-57-10-848Z-mcp_remote-browser.json +0 -8
  132. package/data/security-reports/audits/2026-03-10T18-15-05-007Z-claude-plugin_playwright.json +0 -8
  133. package/data/security-reports/audits/2026-03-10T18-36-16-092Z-claude-plugin_playwright.json +0 -8
package/README.md CHANGED
@@ -1,24 +1,25 @@
1
1
  <h1 align="center">PlugScout</h1>
2
2
 
3
3
  <p align="center">
4
- <a href="https://github.com/amitrintzler/skills-and-mcps/releases/latest"><img alt="Release" src="https://img.shields.io/github/v/release/amitrintzler/skills-and-mcps?display_name=tag&label=release" /></a>
5
- <a href="https://github.com/amitrintzler/skills-and-mcps/actions/workflows/ci.yml"><img alt="CI" src="https://github.com/amitrintzler/skills-and-mcps/actions/workflows/ci.yml/badge.svg?branch=main" /></a>
4
+ <a href="https://www.npmjs.com/package/@shnitzel/plugscout"><img alt="npm" src="https://img.shields.io/npm/v/%40shnitzel%2Fplugscout?label=npm" /></a>
5
+ <a href="https://github.com/amitrintzler/plugscout/releases/latest"><img alt="Release" src="https://img.shields.io/github/v/release/amitrintzler/plugscout?display_name=tag&label=release" /></a>
6
+ <a href="https://github.com/amitrintzler/plugscout/actions/workflows/ci.yml"><img alt="CI" src="https://github.com/amitrintzler/plugscout/actions/workflows/ci.yml/badge.svg?branch=main" /></a>
6
7
  <a href="https://nodejs.org/"><img alt="Node >=18.17" src="https://img.shields.io/badge/node-%3E%3D18.17-339933?logo=node.js&logoColor=white" /></a>
7
8
  <a href="https://www.linkedin.com/in/amit-rintzler-94444535/"><img alt="LinkedIn Amit Rintzler" src="https://img.shields.io/badge/LinkedIn-Amit%20Rintzler-0A66C2?logo=linkedin&logoColor=white" /></a>
8
9
  </p>
9
10
 
10
11
  <p align="center">
11
- <a href="https://github.com/amitrintzler/skills-and-mcps/actions/workflows/daily-security.yml"><img alt="Daily Security" src="https://github.com/amitrintzler/skills-and-mcps/actions/workflows/daily-security.yml/badge.svg?branch=main" /></a>
12
- <a href="https://github.com/amitrintzler/skills-and-mcps/actions/workflows/security-codeql.yml"><img alt="Security / CodeQL" src="https://github.com/amitrintzler/skills-and-mcps/actions/workflows/security-codeql.yml/badge.svg?branch=main" /></a>
13
- <a href="https://github.com/amitrintzler/skills-and-mcps/actions/workflows/security-dependency-review.yml"><img alt="Dependency Review (PR)" src="https://img.shields.io/badge/dependency%20review-PR%20only-2563eb" /></a>
14
- <a href="https://github.com/amitrintzler/skills-and-mcps/actions/workflows/security-secrets.yml"><img alt="Secrets Scan" src="https://img.shields.io/badge/secrets-gitleaks-ef4444" /></a>
15
- <a href="https://github.com/amitrintzler/skills-and-mcps/actions/workflows/security-sbom-trivy.yml"><img alt="SBOM + Trivy" src="https://img.shields.io/badge/SBOM%20%2B%20Trivy-enabled-0ea5e9" /></a>
16
- <a href="https://github.com/amitrintzler/skills-and-mcps/actions/workflows/catalog-sync.yml"><img alt="Catalog Sync (Scheduled)" src="https://img.shields.io/badge/catalog%20sync-scheduled-0ea5e9" /></a>
12
+ <a href="https://github.com/amitrintzler/plugscout/actions/workflows/daily-security.yml"><img alt="Daily Security" src="https://github.com/amitrintzler/plugscout/actions/workflows/daily-security.yml/badge.svg?branch=main" /></a>
13
+ <a href="https://github.com/amitrintzler/plugscout/actions/workflows/security-codeql.yml"><img alt="Security / CodeQL" src="https://github.com/amitrintzler/plugscout/actions/workflows/security-codeql.yml/badge.svg?branch=main" /></a>
14
+ <a href="https://github.com/amitrintzler/plugscout/actions/workflows/security-dependency-review.yml"><img alt="Dependency Review (PR)" src="https://img.shields.io/badge/dependency%20review-PR%20only-2563eb" /></a>
15
+ <a href="https://github.com/amitrintzler/plugscout/actions/workflows/security-secrets.yml"><img alt="Secrets Scan" src="https://img.shields.io/badge/secrets-gitleaks-ef4444" /></a>
16
+ <a href="https://github.com/amitrintzler/plugscout/actions/workflows/security-sbom-trivy.yml"><img alt="SBOM + Trivy" src="https://img.shields.io/badge/SBOM%20%2B%20Trivy-enabled-0ea5e9" /></a>
17
+ <a href="https://github.com/amitrintzler/plugscout/actions/workflows/catalog-sync.yml"><img alt="Catalog Sync (Scheduled)" src="https://img.shields.io/badge/catalog%20sync-scheduled-0ea5e9" /></a>
17
18
  </p>
18
19
 
19
20
  PlugScout helps teams discover, score, and safely install Claude plugins, Claude connectors, Copilot extensions, Skills, and MCP servers with policy-aware risk controls.
20
21
 
21
- Written by Amit Rintzler.
22
+ Developed by Amit Rintzler.
22
23
 
23
24
  License: MIT. Copyright (c) 2026 Amit Rintzler. Reuse is allowed, but redistributed copies must keep the copyright and license notice.
24
25
 
@@ -52,12 +53,12 @@ You can:
52
53
  - `skills` CLI or `npx` for modern skill installs
53
54
  - `skill.sh` is optional and only needed for some legacy `skill.sh`-style installs
54
55
 
55
- ## Install PlugScout (v0.3.1)
56
+ ## Install PlugScout (v0.3.4)
56
57
 
57
58
  **Global install (recommended):**
58
59
 
59
60
  ```bash
60
- npm install -g plugscout
61
+ npm install -g @shnitzel/plugscout
61
62
  plugscout setup
62
63
  ```
63
64
 
@@ -66,14 +67,14 @@ plugscout setup
66
67
  **From source:**
67
68
 
68
69
  ```bash
69
- git clone https://github.com/amitrintzler/skills-and-mcps.git plugscout
70
+ git clone https://github.com/amitrintzler/plugscout.git plugscout
70
71
  cd plugscout
71
- git checkout v0.3.1
72
+ git checkout v0.3.4
72
73
  npm install
73
74
  npm run setup
74
75
  ```
75
76
 
76
- Install newest release tag instead of pinning `v0.3.1`:
77
+ Install newest release tag instead of pinning `v0.3.4`:
77
78
 
78
79
  ```bash
79
80
  git checkout $(git describe --tags --abbrev=0)
@@ -82,7 +83,7 @@ git checkout $(git describe --tags --abbrev=0)
82
83
  ## Quick Start (2-minute path)
83
84
 
84
85
  ```bash
85
- npm install -g plugscout
86
+ npm install -g @shnitzel/plugscout
86
87
  plugscout setup
87
88
  plugscout scan --project . --format table
88
89
  plugscout recommend --project . --only-safe --sort trust --limit 10