AI skill security scanner. Detects prompt injection, credential theft, ClawHavoc. Free, no signup.
https://mcp.skillssafe.com/ssenpx -y skillssafe-mcpAdd this server entry to the mcpServers object in your Claude Desktop config, then restart the app.
{
"mcpServers": {
"com-skillssafe-scanner": {
"url": "https://mcp.skillssafe.com/sse"
}
}
}~/Library/Application Support/Claude/claude_desktop_config.json%APPDATA%\Claude\claude_desktop_config.jsonNo remote HTTP endpoint is advertised. Use the package or stdio setup shown in Install.
SkillsSafe Security Scanner is an MCP server for AI skill security scanner. Detects prompt injection, credential theft, ClawHavoc. Free, no signup.. It supports HTTP, STDIO transport.
Use the generated config in Install. This server runs with npx -y skillssafe-mcp; add any required environment variables before starting your client.
Choose the Claude Desktop tab in Install, copy the config, and add it to Claude Desktop's MCP server settings. Endpoint: https://mcp.skillssafe.com/sse.
Choose the Claude Code tab in Install, copy the config, and add it to Claude Code's MCP server settings. Endpoint: https://mcp.skillssafe.com/sse.
Choose the Codex tab in Install, copy the config, and add it to Codex's MCP server settings. Endpoint: https://mcp.skillssafe.com/sse.
Choose the Cursor or VS Code tab in Install, copy the config, and add it to Cursor or VS Code's MCP server settings. Endpoint: https://mcp.skillssafe.com/sse.
SkillsSafe Security Scanner uses HTTP, STDIO transport. Endpoint: https://mcp.skillssafe.com/sse.
SkillsSafe Security Scanner inventory is listed when the MCP endpoint exposes tools, resources, or prompts. Some servers require auth first.
SkillsSafe Security Scanner does not advertise a verified auth requirement. If discovery fails, it may still need provider login, an API key, a bearer token, or a session header.
| Package | Registry | Version | Inputs |
|---|---|---|---|
skillssafe-mcpstdio | npm | 1.0.0 | None advertised |