Scan your machine for malicious AI agent skills in seconds.
npx @mondoohq/skillcheck
skillcheck detects locally installed AI agent skills, computes SHA-256 checksums, and checks them against the Mondoo AI Agent Security database — covering prompt injection, credential theft, data exfiltration, and 25+ other threat categories across 1,200+ known skills.
| Agent | Config | Skills | What's Detected |
|---|---|---|---|
| Antigravity | ~/.gemini/antigravity/ |
~/.gemini/antigravity/skills/ |
skills |
| Augment | ~/.augment/ |
~/.augment/skills/ |
skills |
| Claude Code | ~/.claude/ |
~/.claude/skills/ |
skills, plugins, MCP servers |
| Cline | ~/.cline/ |
~/.cline/skills/ |
skills |
| Continue | ~/.continue/ |
~/.continue/skills/ |
skills |
| Cursor | ~/.cursor/ |
~/.cursor/skills/ |
skills, MCP servers, rules |
| Gemini CLI | ~/.gemini/ |
~/.gemini/skills/ |
skills, MCP servers |
| GitHub Copilot | ~/.config/github-copilot/ |
~/.config/github-copilot/skills/ |
skills, MCP servers |
| Goose | ~/.config/goose/ |
~/.config/goose/skills/ |
skills, extensions |
| IBM Bob | ~/.bob/ |
~/.bob/skills/ |
skills |
| Junie | ~/.junie/ |
~/.junie/skills/ |
skills |
| Kilo Code | ~/.kilocode/ |
~/.kilocode/skills/ |
skills |
| Kiro | ~/.kiro/ |
~/.kiro/skills/ |
skills |
| Mistral Vibe | ~/.vibe/ |
~/.vibe/skills/ |
skills |
| OpenAI Codex | ~/.codex/ |
~/.codex/skills/ |
skills, plugins, MCP servers |
| OpenClaw | ~/.openclaw/ |
~/.openclaw/skills/ |
skills |
| OpenCode | ~/.config/opencode/ |
~/.config/opencode/skills/ |
skills |
| OpenHands | ~/.openhands/ |
~/.openhands/skills/ |
skills |
| Pi | ~/.pi/agent/ |
~/.pi/agent/skills/ |
skills |
| Qwen Code | ~/.qwen/ |
~/.qwen/skills/ |
skills |
| Roo | ~/.roo/ |
~/.roo/skills/ |
skills |
| Snowflake Cortex | ~/.snowflake/cortex/ |
~/.snowflake/cortex/skills/ |
skills |
| Trae | ~/.trae/ |
~/.trae/skills/ |
skills |
| Warp | ~/.warp/ |
~/.warp/skills/ |
skills |
| Windsurf | ~/.codeium/windsurf/ |
~/.codeium/windsurf/skills/ |
skills, MCP servers, rules |
# Scan all detected agents
npx @mondoohq/skillcheck
# JSON output for CI/CD pipelines
npx @mondoohq/skillcheck --json
# Verbose output with full hashes and report URLs
npx @mondoohq/skillcheck --verboseskillcheck exits with code 1 when critical or high-risk skills are found, making it easy to use as a gate:
# GitHub Actions
- run: npx @mondoohq/skillcheck# Any CI pipeline
npx @mondoohq/skillcheck --json --no-color# Install globally via npm
npm i -g @mondoohq/skillcheckBinaries for macOS, Linux, and Windows are also available on GitHub Releases.
For each detected agent, skillcheck:
- Discovers installed skills, plugins, MCP servers, and rules
- Computes a SHA-256 content hash for each skill
- Queries the Mondoo skill database for known threats
- Reports findings with severity, summary, and a link to the full security report
Skills that aren't in the database yet show as clean — skillcheck fails open, never blocks your workflow.
- Mondoo AI Agent Security
- Skill Database — browse 1,200+ analyzed skills
- Security Checks — 25+ threat categories