[PR #1427] [CLOSED] Add skill-audit-mcp to Security #33064

Closed
opened 2026-07-12 21:01:29 -05:00 by GiteaMirror · 0 comments
Owner

📋 Pull Request Information

Original PR: https://github.com/veggiemonk/awesome-docker/pull/1427
Author: @eltociear
Created: 5/11/2026
Status: Closed

Base: masterHead: add-skill-audit-mcp


📝 Commits (1)

  • cb8538e Add skill-audit-mcp to Security

📊 Changes

1 file changed (+1 additions, -0 deletions)

View changed files

📝 README.md (+1 -0)

📄 Description

Adds skill-audit-mcp under Security.

Static security scanner for MCP servers, AI agent skill files, and plugins. Detects 68 attack patterns across 4 severity levels (CRITICAL/HIGH/MEDIUM/LOW):

  • credential exfiltration / seed-phrase harvest
  • prompt injection / hidden Unicode payloads
  • arbitrary code execution
  • auth bypass / identity impersonation
  • path traversal / broad filesystem access

Container distribution:

  • Multi-arch image at ghcr.io/eltociear/skill-audit-mcp:v1 (linux/amd64 + linux/arm64)
  • docker run --rm -v "$PWD:/work" ghcr.io/eltociear/skill-audit-mcp:v1 --path /work

Also available as:

  • GitHub Action: uses: eltociear/skill-audit-mcp@v1 (SARIF → Code Scanning)
  • Hosted x402 API ($0.01/scan, 1K free/month, 0% fee)
  • Glama-verified MCP server

Zero runtime dependencies, Python 3.6+. MIT license.


🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.

## 📋 Pull Request Information **Original PR:** https://github.com/veggiemonk/awesome-docker/pull/1427 **Author:** [@eltociear](https://github.com/eltociear) **Created:** 5/11/2026 **Status:** ❌ Closed **Base:** `master` ← **Head:** `add-skill-audit-mcp` --- ### 📝 Commits (1) - [`cb8538e`](https://github.com/veggiemonk/awesome-docker/commit/cb8538ec76be74084306baa14532e8ac37acc0cb) Add skill-audit-mcp to Security ### 📊 Changes **1 file changed** (+1 additions, -0 deletions) <details> <summary>View changed files</summary> 📝 `README.md` (+1 -0) </details> ### 📄 Description Adds [skill-audit-mcp](https://github.com/eltociear/skill-audit-mcp) under **Security**. Static security scanner for MCP servers, AI agent skill files, and plugins. Detects **68 attack patterns** across 4 severity levels (CRITICAL/HIGH/MEDIUM/LOW): - credential exfiltration / seed-phrase harvest - prompt injection / hidden Unicode payloads - arbitrary code execution - auth bypass / identity impersonation - path traversal / broad filesystem access **Container distribution:** - Multi-arch image at `ghcr.io/eltociear/skill-audit-mcp:v1` (linux/amd64 + linux/arm64) - `docker run --rm -v "$PWD:/work" ghcr.io/eltociear/skill-audit-mcp:v1 --path /work` **Also available as:** - GitHub Action: `uses: eltociear/skill-audit-mcp@v1` (SARIF → Code Scanning) - Hosted x402 API ($0.01/scan, 1K free/month, 0% fee) - Glama-verified MCP server Zero runtime dependencies, Python 3.6+. MIT license. --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>
GiteaMirror added the pull-request label 2026-07-12 21:01:29 -05:00
Sign in to join this conversation.
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/awesome-docker#33064