·safe-skill-install
!

safe-skill-install

swannysec/robot-toolsGitHub: swannysec/robot-toolsSource: swannysec/robot-tools

Safe skill installation with supply chain security scanning. Wraps Cisco skill-scanner to vet skills before installation. Supports GitHub repos, skills.sh (npx), Claude marketplace plugins, and local paths. Configurable scan depth with static and behavioral analysis by default. Uses GitHub archive downloads to avoid git execution risks, with hardened git clone fallback. Security decisions are made by a deterministic wrapper script, not the LLM agent.

swannysec·safe·skill·install
13Installs·0Trend·@swannysec

Installation

GitHub: swannysec/robot-tools
$npx skills add https://github.com/swannysec/robot-tools --skill safe-skill-install

How to Install safe-skill-install

Quickly install safe-skill-install AI skill to your development environment via command line

  1. Open Terminal: Open your terminal or command line tool (Terminal, iTerm, Windows Terminal, etc.)
  2. Run Installation Command: Copy and run this command: npx skills add https://github.com/swannysec/robot-tools --skill safe-skill-install
  3. Verify Installation: Once installed, the skill will be automatically configured in your AI coding environment and ready to use in Claude Code, Cursor, or OpenClaw

Source: swannysec/robot-tools.

SKILL.md

View raw

Supply chain security scanning for Claude Code skill installations. Wraps Cisco's skill-scanner to vet skills before installation.

This skill uses a two-layer architecture that separates security decisions from user interaction:

Why this matters: The wrapper script makes the SAFE/CAUTION/UNSAFE/FAILED classification using bash conditionals — not LLM interpretation. Prompt injection in skill content cannot influence the security decision because the decision is made by compiled logic that never processes skill content as instructions.

Safe skill installation with supply chain security scanning. Wraps Cisco skill-scanner to vet skills before installation. Supports GitHub repos, skills.sh (npx), Claude marketplace plugins, and local paths. Configurable scan depth with static and behavioral analysis by default. Uses GitHub archive downloads to avoid git execution risks, with hardened git clone fallback. Security decisions are made by a deterministic wrapper script, not the LLM agent. Source: swannysec/robot-tools.

Facts (cite-ready)

Stable fields and commands for AI/search citations.

Install command
npx skills add https://github.com/swannysec/robot-tools --skill safe-skill-install
Source
swannysec/robot-tools
Category
!Security
Verified
First Seen
2026-02-24
Updated
2026-03-10
URL
https://www.learn-skills.dev/en/skills/swannysec/robot-tools/safe-skill-install

Browse more skills from swannysec/robot-tools

Quick answers

What is safe-skill-install?

Safe skill installation with supply chain security scanning. Wraps Cisco skill-scanner to vet skills before installation. Supports GitHub repos, skills.sh (npx), Claude marketplace plugins, and local paths. Configurable scan depth with static and behavioral analysis by default. Uses GitHub archive downloads to avoid git execution risks, with hardened git clone fallback. Security decisions are made by a deterministic wrapper script, not the LLM agent. Source: swannysec/robot-tools.

How do I install safe-skill-install?

Open your terminal or command line tool (Terminal, iTerm, Windows Terminal, etc.) Copy and run this command: npx skills add https://github.com/swannysec/robot-tools --skill safe-skill-install Once installed, the skill will be automatically configured in your AI coding environment and ready to use in Claude Code, Cursor, or OpenClaw

Where is the source repository?

https://github.com/swannysec/robot-tools

Details

Category
!Security
Source
skills.sh
First Seen
2026-02-24

Related Skills

starduster
9 Installs