skillscan 0.1.0

package/dist/scanner/rules/sensitive-paths.d.ts

@@ -0,0 +1,11 @@
+import { Rule, Finding, SkillMetadata, Severity } from '../../types';
+export declare class SensitivePathsRule implements Rule {
+    id: string;
+    name: string;
+    description: string;
+    severity: Severity;
+    private patterns;
+    check(content: string, _metadata: SkillMetadata, filePath: string): Finding[];
+    private getLineNumber;
+}
+//# sourceMappingURL=sensitive-paths.d.ts.map

package/dist/scanner/rules/sensitive-paths.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sensitive-paths.d.ts","sourceRoot":"","sources":["../../../src/scanner/rules/sensitive-paths.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AAErE,qBAAa,kBAAmB,YAAW,IAAI;IAC7C,EAAE,SAAqB;IACvB,IAAI,SAA+B;IACnC,WAAW,SAAuE;IAClF,QAAQ,EAAE,QAAQ,CAAc;IAEhC,OAAO,CAAC,QAAQ,CAuGd;IAEF,KAAK,CAAC,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,EAAE;IA2B7E,OAAO,CAAC,aAAa;CAGtB"}

package/dist/scanner/rules/sensitive-paths.js

@@ -0,0 +1,142 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SensitivePathsRule = void 0;
+class SensitivePathsRule {
+    constructor() {
+        this.id = 'sensitive-paths';
+        this.name = 'Sensitive Path References';
+        this.description = 'Detects references to sensitive system paths and credential files';
+        this.severity = 'CRITICAL';
+        this.patterns = [
+            // SSH
+            {
+                name: 'ssh-keys',
+                regex: /~?\/?\.ssh\/(id_rsa|id_ed25519|id_ecdsa|id_dsa|authorized_keys|known_hosts|config)/gi,
+                severity: 'CRITICAL',
+                message: 'SSH key/config path referenced'
+            },
+            {
+                name: 'ssh-directory',
+                regex: /~?\/?\.ssh\/?(?:\*|$)/gi,
+                severity: 'CRITICAL',
+                message: 'SSH directory referenced'
+            },
+            // AWS
+            {
+                name: 'aws-credentials',
+                regex: /~?\/?\.aws\/(credentials|config)/gi,
+                severity: 'CRITICAL',
+                message: 'AWS credentials file referenced'
+            },
+            {
+                name: 'aws-env-vars',
+                regex: /AWS_(SECRET_ACCESS_KEY|ACCESS_KEY_ID|SESSION_TOKEN)/gi,
+                severity: 'CRITICAL',
+                message: 'AWS credential environment variable referenced'
+            },
+            // GCP
+            {
+                name: 'gcp-credentials',
+                regex: /GOOGLE_APPLICATION_CREDENTIALS|~?\/?\.config\/gcloud/gi,
+                severity: 'CRITICAL',
+                message: 'GCP credential path/variable referenced'
+            },
+            // Azure
+            {
+                name: 'azure-credentials',
+                regex: /AZURE_(CLIENT_SECRET|TENANT_ID|CLIENT_ID)|~?\/?\.azure/gi,
+                severity: 'CRITICAL',
+                message: 'Azure credential path/variable referenced'
+            },
+            // GPG/PGP
+            {
+                name: 'gpg-keys',
+                regex: /~?\/?\.gnupg\/?|\.gpg\b|secring\.gpg/gi,
+                severity: 'HIGH',
+                message: 'GPG key path referenced'
+            },
+            // Generic secrets
+            {
+                name: 'env-files',
+                regex: /\.env(\.local|\.prod|\.production|\.development|\.staging)?(?:\b|$)/gi,
+                severity: 'HIGH',
+                message: 'Environment file referenced'
+            },
+            {
+                name: 'password-files',
+                regex: /\/etc\/passwd|\/etc\/shadow|\.password|\.secret/gi,
+                severity: 'CRITICAL',
+                message: 'Password/secret file referenced'
+            },
+            // Browser data
+            {
+                name: 'browser-data',
+                regex: /~?\/?\.config\/(google-chrome|chromium|BraveSoftware)\/|Library\/Application Support\/(Google\/Chrome|BraveSoftware)/gi,
+                severity: 'HIGH',
+                message: 'Browser profile data referenced'
+            },
+            // Token patterns
+            {
+                name: 'api-tokens',
+                regex: /(API_KEY|API_SECRET|AUTH_TOKEN|PRIVATE_KEY|SECRET_KEY|ACCESS_TOKEN)(?:\s*=|\s*:)/gi,
+                severity: 'HIGH',
+                message: 'API token/key variable pattern detected'
+            },
+            // Kubernetes
+            {
+                name: 'kube-config',
+                regex: /~?\/?\.kube\/config|KUBECONFIG/gi,
+                severity: 'HIGH',
+                message: 'Kubernetes config referenced'
+            },
+            // Docker
+            {
+                name: 'docker-config',
+                regex: /~?\/?\.docker\/config\.json/gi,
+                severity: 'HIGH',
+                message: 'Docker config (may contain registry auth) referenced'
+            },
+            // NPM
+            {
+                name: 'npm-tokens',
+                regex: /~?\/?\.npmrc|NPM_TOKEN/gi,
+                severity: 'HIGH',
+                message: 'NPM config/token referenced'
+            },
+            // Git credentials
+            {
+                name: 'git-credentials',
+                regex: /~?\/?\.git-credentials|~?\/?\.gitconfig/gi,
+                severity: 'HIGH',
+                message: 'Git credentials/config referenced'
+            }
+        ];
+    }
+    check(content, _metadata, filePath) {
+        const findings = [];
+        const lines = content.split('\n');
+        for (const pattern of this.patterns) {
+            let match;
+            const regex = new RegExp(pattern.regex.source, pattern.regex.flags);
+            while ((match = regex.exec(content)) !== null) {
+                const lineNumber = this.getLineNumber(content, match.index);
+                const contextLine = lines[lineNumber - 1] || '';
+                findings.push({
+                    ruleId: this.id,
+                    ruleName: this.name,
+                    severity: pattern.severity,
+                    message: `${pattern.message}: "${match[0]}"`,
+                    file: filePath,
+                    line: lineNumber,
+                    context: contextLine.trim().slice(0, 100)
+                });
+            }
+        }
+        return findings;
+    }
+    getLineNumber(content, index) {
+        return content.slice(0, index).split('\n').length;
+    }
+}
+exports.SensitivePathsRule = SensitivePathsRule;
+//# sourceMappingURL=sensitive-paths.js.map

package/dist/scanner/rules/sensitive-paths.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sensitive-paths.js","sourceRoot":"","sources":["../../../src/scanner/rules/sensitive-paths.ts"],"names":[],"mappings":";;;AAEA,MAAa,kBAAkB;IAA/B;QACE,OAAE,GAAG,iBAAiB,CAAC;QACvB,SAAI,GAAG,2BAA2B,CAAC;QACnC,gBAAW,GAAG,mEAAmE,CAAC;QAClF,aAAQ,GAAa,UAAU,CAAC;QAExB,aAAQ,GAAG;YACjB,MAAM;YACN;gBACE,IAAI,EAAE,UAAU;gBAChB,KAAK,EAAE,sFAAsF;gBAC7F,QAAQ,EAAE,UAAsB;gBAChC,OAAO,EAAE,gCAAgC;aAC1C;YACD;gBACE,IAAI,EAAE,eAAe;gBACrB,KAAK,EAAE,yBAAyB;gBAChC,QAAQ,EAAE,UAAsB;gBAChC,OAAO,EAAE,0BAA0B;aACpC;YACD,MAAM;YACN;gBACE,IAAI,EAAE,iBAAiB;gBACvB,KAAK,EAAE,oCAAoC;gBAC3C,QAAQ,EAAE,UAAsB;gBAChC,OAAO,EAAE,iCAAiC;aAC3C;YACD;gBACE,IAAI,EAAE,cAAc;gBACpB,KAAK,EAAE,uDAAuD;gBAC9D,QAAQ,EAAE,UAAsB;gBAChC,OAAO,EAAE,gDAAgD;aAC1D;YACD,MAAM;YACN;gBACE,IAAI,EAAE,iBAAiB;gBACvB,KAAK,EAAE,wDAAwD;gBAC/D,QAAQ,EAAE,UAAsB;gBAChC,OAAO,EAAE,yCAAyC;aACnD;YACD,QAAQ;YACR;gBACE,IAAI,EAAE,mBAAmB;gBACzB,KAAK,EAAE,0DAA0D;gBACjE,QAAQ,EAAE,UAAsB;gBAChC,OAAO,EAAE,2CAA2C;aACrD;YACD,UAAU;YACV;gBACE,IAAI,EAAE,UAAU;gBAChB,KAAK,EAAE,wCAAwC;gBAC/C,QAAQ,EAAE,MAAkB;gBAC5B,OAAO,EAAE,yBAAyB;aACnC;YACD,kBAAkB;YAClB;gBACE,IAAI,EAAE,WAAW;gBACjB,KAAK,EAAE,uEAAuE;gBAC9E,QAAQ,EAAE,MAAkB;gBAC5B,OAAO,EAAE,6BAA6B;aACvC;YACD;gBACE,IAAI,EAAE,gBAAgB;gBACtB,KAAK,EAAE,mDAAmD;gBAC1D,QAAQ,EAAE,UAAsB;gBAChC,OAAO,EAAE,iCAAiC;aAC3C;YACD,eAAe;YACf;gBACE,IAAI,EAAE,cAAc;gBACpB,KAAK,EAAE,wHAAwH;gBAC/H,QAAQ,EAAE,MAAkB;gBAC5B,OAAO,EAAE,iCAAiC;aAC3C;YACD,iBAAiB;YACjB;gBACE,IAAI,EAAE,YAAY;gBAClB,KAAK,EAAE,oFAAoF;gBAC3F,QAAQ,EAAE,MAAkB;gBAC5B,OAAO,EAAE,yCAAyC;aACnD;YACD,aAAa;YACb;gBACE,IAAI,EAAE,aAAa;gBACnB,KAAK,EAAE,kCAAkC;gBACzC,QAAQ,EAAE,MAAkB;gBAC5B,OAAO,EAAE,8BAA8B;aACxC;YACD,SAAS;YACT;gBACE,IAAI,EAAE,eAAe;gBACrB,KAAK,EAAE,+BAA+B;gBACtC,QAAQ,EAAE,MAAkB;gBAC5B,OAAO,EAAE,sDAAsD;aAChE;YACD,MAAM;YACN;gBACE,IAAI,EAAE,YAAY;gBAClB,KAAK,EAAE,0BAA0B;gBACjC,QAAQ,EAAE,MAAkB;gBAC5B,OAAO,EAAE,6BAA6B;aACvC;YACD,kBAAkB;YAClB;gBACE,IAAI,EAAE,iBAAiB;gBACvB,KAAK,EAAE,2CAA2C;gBAClD,QAAQ,EAAE,MAAkB;gBAC5B,OAAO,EAAE,mCAAmC;aAC7C;SACF,CAAC;IAgCJ,CAAC;IA9BC,KAAK,CAAC,OAAe,EAAE,SAAwB,EAAE,QAAgB;QAC/D,MAAM,QAAQ,GAAc,EAAE,CAAC;QAC/B,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAElC,KAAK,MAAM,OAAO,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YACpC,IAAI,KAAK,CAAC;YACV,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;YAEpE,OAAO,CAAC,KAAK,GAAG,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;gBAC9C,MAAM,UAAU,GAAG,IAAI,CAAC,aAAa,CAAC,OAAO,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC;gBAC5D,MAAM,WAAW,GAAG,KAAK,CAAC,UAAU,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;gBAEhD,QAAQ,CAAC,IAAI,CAAC;oBACZ,MAAM,EAAE,IAAI,CAAC,EAAE;oBACf,QAAQ,EAAE,IAAI,CAAC,IAAI;oBACnB,QAAQ,EAAE,OAAO,CAAC,QAAQ;oBAC1B,OAAO,EAAE,GAAG,OAAO,CAAC,OAAO,MAAM,KAAK,CAAC,CAAC,CAAC,GAAG;oBAC5C,IAAI,EAAE,QAAQ;oBACd,IAAI,EAAE,UAAU;oBAChB,OAAO,EAAE,WAAW,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;iBAC1C,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,OAAO,QAAQ,CAAC;IAClB,CAAC;IAEO,aAAa,CAAC,OAAe,EAAE,KAAa;QAClD,OAAO,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC;IACpD,CAAC;CACF;AA7ID,gDA6IC"}

package/dist/scoring/trust-score.d.ts

@@ -0,0 +1,5 @@
+import { Finding } from '../types';
+export declare function calculateScore(findings: Finding[]): number;
+export declare function getRating(score: number): 'VERIFIED' | 'CAUTION' | 'WARNING';
+export declare function getRatingEmoji(rating: 'VERIFIED' | 'CAUTION' | 'WARNING'): string;
+//# sourceMappingURL=trust-score.d.ts.map

package/dist/scoring/trust-score.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"trust-score.d.ts","sourceRoot":"","sources":["../../src/scoring/trust-score.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAY,MAAM,UAAU,CAAC;AAS7C,wBAAgB,cAAc,CAAC,QAAQ,EAAE,OAAO,EAAE,GAAG,MAAM,CAU1D;AAED,wBAAgB,SAAS,CAAC,KAAK,EAAE,MAAM,GAAG,UAAU,GAAG,SAAS,GAAG,SAAS,CAI3E;AAED,wBAAgB,cAAc,CAAC,MAAM,EAAE,UAAU,GAAG,SAAS,GAAG,SAAS,GAAG,MAAM,CAMjF"}

package/dist/scoring/trust-score.js

@@ -0,0 +1,35 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.calculateScore = calculateScore;
+exports.getRating = getRating;
+exports.getRatingEmoji = getRatingEmoji;
+const SEVERITY_WEIGHTS = {
+    CRITICAL: 40,
+    HIGH: 20,
+    MEDIUM: 10,
+    LOW: 5
+};
+function calculateScore(findings) {
+    const baseScore = 100;
+    let deductions = 0;
+    for (const finding of findings) {
+        deductions += SEVERITY_WEIGHTS[finding.severity];
+    }
+    // Floor at 0, ceiling at 100
+    return Math.max(0, Math.min(100, baseScore - deductions));
+}
+function getRating(score) {
+    if (score >= 80)
+        return 'VERIFIED';
+    if (score >= 50)
+        return 'CAUTION';
+    return 'WARNING';
+}
+function getRatingEmoji(rating) {
+    switch (rating) {
+        case 'VERIFIED': return '🟢';
+        case 'CAUTION': return '🟡';
+        case 'WARNING': return '🔴';
+    }
+}
+//# sourceMappingURL=trust-score.js.map

package/dist/scoring/trust-score.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"trust-score.js","sourceRoot":"","sources":["../../src/scoring/trust-score.ts"],"names":[],"mappings":";;AASA,wCAUC;AAED,8BAIC;AAED,wCAMC;AA/BD,MAAM,gBAAgB,GAA6B;IACjD,QAAQ,EAAE,EAAE;IACZ,IAAI,EAAE,EAAE;IACR,MAAM,EAAE,EAAE;IACV,GAAG,EAAE,CAAC;CACP,CAAC;AAEF,SAAgB,cAAc,CAAC,QAAmB;IAChD,MAAM,SAAS,GAAG,GAAG,CAAC;IAEtB,IAAI,UAAU,GAAG,CAAC,CAAC;IACnB,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,UAAU,IAAI,gBAAgB,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;IACnD,CAAC;IAED,6BAA6B;IAC7B,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,SAAS,GAAG,UAAU,CAAC,CAAC,CAAC;AAC5D,CAAC;AAED,SAAgB,SAAS,CAAC,KAAa;IACrC,IAAI,KAAK,IAAI,EAAE;QAAE,OAAO,UAAU,CAAC;IACnC,IAAI,KAAK,IAAI,EAAE;QAAE,OAAO,SAAS,CAAC;IAClC,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,SAAgB,cAAc,CAAC,MAA0C;IACvE,QAAQ,MAAM,EAAE,CAAC;QACf,KAAK,UAAU,CAAC,CAAC,OAAO,IAAI,CAAC;QAC7B,KAAK,SAAS,CAAC,CAAC,OAAO,IAAI,CAAC;QAC5B,KAAK,SAAS,CAAC,CAAC,OAAO,IAAI,CAAC;IAC9B,CAAC;AACH,CAAC"}

package/dist/types.d.ts

@@ -0,0 +1,47 @@
+export type Severity = 'CRITICAL' | 'HIGH' | 'MEDIUM' | 'LOW';
+export interface Finding {
+    ruleId: string;
+    ruleName: string;
+    severity: Severity;
+    message: string;
+    file: string;
+    line?: number;
+    column?: number;
+    context?: string;
+}
+export interface ScanResult {
+    skillPath: string;
+    skillName: string;
+    findings: Finding[];
+    score: number;
+    rating: 'VERIFIED' | 'CAUTION' | 'WARNING';
+    scannedAt: string;
+    scanDuration: number;
+}
+export interface SkillMetadata {
+    name: string;
+    description?: string;
+    version?: string;
+    author?: string;
+    tools?: ToolDefinition[];
+    rawContent: string;
+    frontmatter: Record<string, unknown>;
+}
+export interface ToolDefinition {
+    name: string;
+    description?: string;
+    parameters?: Record<string, unknown>;
+}
+export interface Rule {
+    id: string;
+    name: string;
+    description: string;
+    severity: Severity;
+    check(content: string, metadata: SkillMetadata, filePath: string): Finding[];
+}
+export interface ScanOptions {
+    path: string;
+    format?: 'json' | 'text' | 'ci';
+    verbose?: boolean;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAEA,MAAM,MAAM,QAAQ,GAAG,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;AAE9D,MAAM,WAAW,OAAO;IACtB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,QAAQ,CAAC;IACnB,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,UAAU;IACzB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,OAAO,EAAE,CAAC;IACpB,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,UAAU,GAAG,SAAS,GAAG,SAAS,CAAC;IAC3C,SAAS,EAAE,MAAM,CAAC;IAClB,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,KAAK,CAAC,EAAE,cAAc,EAAE,CAAC;IACzB,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACtC;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACtC;AAED,MAAM,WAAW,IAAI;IACnB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,QAAQ,CAAC;IACnB,KAAK,CAAC,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,EAAE,CAAC;CAC9E;AAED,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,CAAC,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CAAC;IAChC,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB"}

package/dist/types.js

@@ -0,0 +1,4 @@
+"use strict";
+// Core types for SkillScan
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":";AAAA,2BAA2B"}

package/jest.config.js

@@ -0,0 +1,9 @@
+/** @type {import('ts-jest').JestConfigWithTsJest} */
+module.exports = {
+  preset: 'ts-jest',
+  testEnvironment: 'node',
+  testMatch: ['**/tests/**/*.test.ts'],
+  collectCoverageFrom: ['src/**/*.ts'],
+  coverageDirectory: 'coverage',
+  verbose: true
+};

package/package.json

@@ -0,0 +1,42 @@
+{
+  "name": "skillscan",
+  "version": "0.1.0",
+  "description": "Trust verification layer for AI agent skill marketplaces - scan, score, and verify skills before installation",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "bin": {
+    "skillscan": "./dist/cli/index.js"
+  },
+  "scripts": {
+    "build": "tsc",
+    "dev": "ts-node src/cli/index.ts",
+    "test": "jest",
+    "test:watch": "jest --watch",
+    "lint": "eslint src/**/*.ts",
+    "prepublishOnly": "npm run build"
+  },
+  "keywords": ["security", "ai", "agent", "skills", "mcp", "scanner", "trust", "verification"],
+  "author": "dejimarquis",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/dejimarquis/SkillScan"
+  },
+  "devDependencies": {
+    "@types/jest": "^30.0.0",
+    "@types/node": "^25.2.0",
+    "@typescript-eslint/eslint-plugin": "^8.54.0",
+    "@typescript-eslint/parser": "^8.54.0",
+    "eslint": "^9.39.2",
+    "jest": "^30.2.0",
+    "prettier": "^3.8.1",
+    "ts-jest": "^29.4.6",
+    "ts-node": "^10.9.2",
+    "typescript": "^5.9.3"
+  },
+  "dependencies": {
+    "chalk": "^5.6.2",
+    "commander": "^14.0.3",
+    "gray-matter": "^4.0.3"
+  }
+}

package/skill/SKILL.md

@@ -0,0 +1,76 @@
+---
+name: skillscan
+description: Security scanner for AI agent skills - detect prompt injection, data exfiltration, and supply chain attacks before installation
+version: 0.1.0
+author: dejimarquis
+tags:
+  - security
+  - scanning
+  - trust
+  - verification
+---
+
+# SkillScan 🔍
+
+**Trust verification for AI agent skills** — Scan, score, and verify skills before installation.
+
+## Why Use SkillScan?
+
+AI agent skill marketplaces are growing rapidly, but **skill supply chain security is broken**:
+
+- 🎭 **Tool Poisoning**: Hidden instructions in skill metadata can exfiltrate SSH keys, API tokens, or personal data
+- 📈 **Fake Trust Signals**: Download counts can be inflated with simple scripts  
+- 💉 **Prompt Injection**: Malicious skills can override agent behavior
+
+SkillScan detects these attacks **before they reach your agent**.
+
+## How to Scan a Skill
+
+When a user asks you to check if a skill is safe, run this command:
+
+```bash
+npx skillscan scan /path/to/skill
+```
+
+For more technical details (file locations, line numbers):
+
+```bash
+npx skillscan scan /path/to/skill --verbose
+```
+
+### Example prompts users might ask:
+- "Scan the github-automator skill for security issues"
+- "Check if this skill is safe before I install it"
+- "Run a security scan on /path/to/some-skill"
+
+## Understanding the Output
+
+**For safe skills:** You'll see a green "SAFE TO INSTALL" verdict with a 100/100 score.
+
+**For suspicious skills:** You'll see a red "DO NOT INSTALL" verdict with:
+- A TL;DR explaining the main risk
+- Grouped issues with code snippets showing what's wrong
+- A plain-English explanation of the risks
+- A clear recommendation
+
+## What It Detects
+
+### 🔴 Critical Issues
+- **Prompt Injection**: Attempts to override AI safety rules
+- **Credential Theft**: References to SSH keys, AWS credentials, API tokens
+
+### 🟠 High Risk Issues  
+- **Hidden Instructions**: Zero-width characters, HTML comments hiding code
+- **Suspicious File Access**: Path traversal, home directory access
+
+## Trust Score
+
+| Score | Verdict | What to tell the user |
+|-------|---------|----------------------|
+| 80-100 | ✅ SAFE | "This skill looks safe to install" |
+| 50-79 | 🟡 REVIEW | "Review the flagged items before installing" |
+| 0-49 | 🔴 UNSAFE | "Do not install this skill - it shows signs of malicious behavior" |
+
+---
+
+**SkillScan** — Because trust should be verified, not assumed. 🛡️

package/src/cli/commands/scan.ts

@@ -0,0 +1,35 @@
+import * as fs from 'fs';
+import * as path from 'path';
+import { ScanEngine } from '../../scanner/engine';
+import { formatOutput } from '../../output/formatters';
+import { ScanOptions } from '../../types';
+
+export async function scanCommand(skillPath: string, options: { format: string; verbose: boolean }): Promise<void> {
+  const resolvedPath = path.resolve(skillPath);
+  
+  if (!fs.existsSync(resolvedPath)) {
+    console.error(`Error: Path not found: ${resolvedPath}`);
+    process.exit(1);
+  }
+
+  const scanOptions: ScanOptions = {
+    path: resolvedPath,
+    format: options.format as 'json' | 'text' | 'ci',
+    verbose: options.verbose
+  };
+
+  try {
+    const engine = new ScanEngine();
+    const result = await engine.scan(scanOptions);
+    const output = formatOutput(result, scanOptions);
+    console.log(output);
+    
+    // Exit with error code if findings are critical
+    if (result.rating === 'WARNING') {
+      process.exit(1);
+    }
+  } catch (error) {
+    console.error(`Error scanning skill: ${error instanceof Error ? error.message : error}`);
+    process.exit(1);
+  }
+}

package/src/cli/index.ts

@@ -0,0 +1,19 @@
+#!/usr/bin/env node
+import { Command } from 'commander';
+import { scanCommand } from './commands/scan';
+
+const program = new Command();
+
+program
+  .name('skillscan')
+  .description('Trust verification for AI agent skills - scan, score, and verify before installation')
+  .version('0.1.0');
+
+program
+  .command('scan <path>')
+  .description('Scan a skill directory or file for security issues')
+  .option('-f, --format <format>', 'Output format: json, text, ci', 'text')
+  .option('-v, --verbose', 'Show detailed output', false)
+  .action(scanCommand);
+
+program.parse();

package/src/index.ts

@@ -0,0 +1,5 @@
+export { ScanEngine } from './scanner/engine';
+export { calculateScore, getRating, getRatingEmoji } from './scoring/trust-score';
+export { formatOutput } from './output/formatters';
+export { getAllRules, getRuleById } from './scanner/rules';
+export * from './types';