Skills
.Work. You
Rest

plugin-security-gate

Community

Block malicious plugins before they install.

Software Engineering#security#audit#plugin#supply-chain#scan#prompt-injection
Authoryves-s
Version1.0.0
Installs0

System Documentation

What problem does it solve?

Third‑party plugins can introduce prompt injection, code execution, persistence, supply‑chain, and file‑system risks that compromise the Just‑Ship framework. Without automated checks, malicious or unsafe plugins may be installed unnoticed.

Core Features & Use Cases

  • Comprehensive threat detection across markdown skill files and associated scripts, covering prompt injection, code execution, persistence, supply‑chain, and filesystem violations.
  • Automatic integration with the setup.sh installation flow to block unsafe plugins before they are loaded.
  • Manual audit via /just-ship-audit to assess already‑installed plugins and generate detailed JSON reports.

Quick Start

Run the plugin-security-gate skill during setup to automatically audit all installed plugins.

Dependency Matrix

Required Modules

None required

Components

references

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: plugin-security-gate
Download link: https://github.com/yves-s/just-ship/archive/main.zip#plugin-security-gate

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.