plugin-security-scan
OfficialScan plugin markdown for semantic threats
Legal & Compliance#security scanning#plugin validation#privilege escalation#json output#prompt injection#markdown analysis#credential exfiltration
Authorevolution-foundation
Version1.0.0
Installs0
System Documentation
What problem does it solve?
It helps prevent unsafe or malicious behavior in plugin/skill content by detecting prompt injection, credential exfiltration, and privilege-escalation instructions that simple regex checks can miss.
Core Features & Use Cases
- Semantic threat detection: Identifies instruction-level prompt injection patterns, including system-prompt override attempts and persona replacement.
- Credential exfiltration risk spotting: Flags directives to read or transmit secrets via commands or file path targeting (e.g., .env, .ssh).
- Privilege escalation detection: Detects claims or directives that expand authority beyond the intended sandbox/scope.
Quick Start
Ask your EvoNexus plugin install gate to run the plugin-security-scan on the provided plugin markdown files to receive a strict JSON verdict and findings.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: plugin-security-scan Download link: https://github.com/evolution-foundation/evo-nexus/archive/main.zip#plugin-security-scan Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.