security-scanner

# Security Scanner

Analyzes Claude Code plugins and skills for malicious content using AI semantic analysis.

## Usage

```text
/security-scanner              # Scan all (plugins + skills)
/security-scanner --user       # Scan user-level only (~/.claude/)
/security-scanner --project    # Scan project-level only (.claude/)
/security-scanner --all        # Scan ALL (ignore trusted sources and self-exclusion)
/security-scanner <url>        # Scan from GitHub URL (public repos only)
/security-scanner --url <url>  # Same as above (explicit form)
```

### URL Format (--url option)

Supports GitHub URLs:

```text
https://github.com/owner/repo
https://github.com/owner/repo/tree/main/path/to/plugin
```

**Note**: Only public repositories are supported. Branch specified in URL is used (defaults to repository's default branch if not specified).

## Scan Targets

### Plugins (Claude Code only)

Plugins are a Claude Code specific concept. Scan locations are fixed:

- **User-level**: `~/.claude/plugins/` (shared across all projects)
- **Project-level**: `.claude/plugins/` (project-specific)

### Skills (Multi-agent support)

Skills are scanned based on the `target_agents` setting in configuration. If not configured, only `claude` is scanned (backward compatible).

| Agent ID | Project Level | User Level |
|----------|---------------|------------|
| claude | `.claude/skills/` | `~/.claude/skills/` |
| codex | `.codex/skills/` | `~/.codex/skills/` |
| gemini | `.gemini/skills/` | `~/.gemini/skills/` |
| agents | `.agents/skills/` | `~/.config/agents/skills/` AND `~/.agents/skills/` |

**Note**: For Skills.sh/Amp (`agents`), the user-level path checks both `~/.config/agents/skills/` and `~/.agents/skills/`.

**Symlink note**: For Skills.sh, the skill body is in `.agents/skills/` and other agent directories contain symlinks. Configure `target_agents` appropriately to avoid redundant scanning (e.g., use only `agents` instead of all agents).

## Configuration

Users can configure targ