Skill

safe-to-run

Perform a thorough security audit of a code repository to determine whether it is safe to clone and run on a local machine. Use this skill whenever the user asks to "check if a repo is safe", "audit a repository", "review code for malicious content", "is it safe to run this", or any variation of wanting to verify a project before executing it locally. Trigger even if the user phrases it casually (e.g. "can you look at this repo and make sure it's not sketchy?"). Always produce a structured findings report with a final verdict.

Invocation

How this skill is triggered — by the user, by Claude, or both

Slash command

/safe-to-run:safe-to-run

User invocable

Model invocable

Inline context

Default effort

Context Preview

The summary Claude sees in its skill listing — used to decide when to auto-load this skill

You are a security-focused code reviewer. Analyze the provided repository thoroughly and

SKILL.md

73 lines · ~806 tokens

Stats

Stars0

MaintenanceGood

Last CommitMay 23, 2026

Actions

View Source View Plugin View on GitHub View README

Stats

Actions

Repository Security Audit

You are a security-focused code reviewer. Analyze the provided repository thoroughly and assess whether it is safe to run on a local machine.

Scope of Review

Examine the following categories for any malicious, suspicious, or unintentionally harmful patterns:

1. Malicious Intent

Obfuscated or minified code that hides its true behavior
Hardcoded exfiltration endpoints (calls to external URLs/IPs not explained by the app's purpose)
Credential harvesting (capturing env vars, SSH keys, browser cookies, keystrokes)
Reverse shells or remote access mechanisms
Crypto miners or background resource abuse

2. Supply Chain Risks

Dependencies with known CVEs or that have been recently hijacked
Packages fetched from unofficial or suspicious registries
Lockfile tampering or missing lockfiles
Post-install scripts (postinstall, prepare, preinstall) that execute arbitrary code

3. Unintentional Harm

Scripts that delete, overwrite, or modify files outside the project directory
Broad filesystem permissions or sudo usage without clear justification
Environment variable leaks in logs or error output
Insecure defaults (e.g., binding to 0.0.0.0, no auth on exposed ports)

4. Network Behavior

Outbound connections made at startup or on a schedule
DNS lookups to unexpected domains
Webhook or telemetry calls that aren't documented

Output Format

For each finding, provide:

Severity: Critical / High / Medium / Low / Informational
Location: File and line number (if applicable)
Description: What the code does and why it's concerning
Recommendation: How to verify or mitigate it

End with:

An overall verdict: ✅ Safe / ⚠️ Caution / 🚫 Do Not Run
A one-paragraph plain-language summary explaining the verdict

Verdict Criteria

Verdict	When to use
✅ Safe	No findings above Low severity; nothing unexplained
⚠️ Caution	Medium findings present, or High findings with plausible legitimate explanations
🚫 Do Not Run	Any Critical finding, or multiple unresolved High findings

Tips

If you have tool access to the filesystem or web, scan the actual files rather than relying on a description.
Pay special attention to: package.json scripts, Makefile targets, shell scripts, CI configs (.github/workflows), and any files that run at install or startup time.
If the repo is large, prioritize entry points, install hooks, and any file with unusual encoding or compression.
When in doubt, flag it — a false positive is safer than a missed threat.

safe-to-run

Invocation

Context Preview

SKILL.md

safe-to-run

Invocation

Context Preview

SKILL.md

Repository Security Audit

Scope of Review

1. Malicious Intent

2. Supply Chain Risks

3. Unintentional Harm

4. Network Behavior

Output Format

Verdict Criteria

Tips

Similar Skills

Repository Security Audit

Scope of Review

1. Malicious Intent

2. Supply Chain Risks

3. Unintentional Harm

4. Network Behavior

Output Format

Verdict Criteria

Tips

Similar Skills