Can this skill automatically fix security vulnerabilities?

No, security warnings are strictly advisory to ensure developer oversight. Auto-fixes are only applied to high-certainty structural issues like missing schema properties or version mismatches.

What is the 'Intern Test' for tool design?

The Intern Test is a quality benchmark used by this skill to ensure tool descriptions are clear enough for a human to use correctly without prior context, significantly improving LLM tool-calling accuracy.

How does it help with MCP server security?

It scans for dangerous patterns like unrestricted Bash access, shell escape sequences in commands, and path traversal risks, while encouraging user consent patterns for data access.

Which plugin platforms are compatible with this skill?

It is designed to work with Claude Code plugins, OpenCode plugin structures, and Codex MCP configurations defined in TOML or JSON.

Plugin Enhancer & Validator

Name: Plugin Enhancer & Validator
Author: agent-sh

byagent-sh

•

개발자 도구

Analyzes and optimizes Claude Code plugin structures, MCP tool schemas, and security patterns to ensure production-grade reliability.

The enhance-plugins skill is a comprehensive diagnostic tool designed for developers building Claude Code plugins and Model Context Protocol (MCP) servers. It validates plugin.json configurations, enforces tool schema best practices through the 'Intern Test' for descriptions, and identifies critical security vulnerabilities such as command injection and path traversal. By automating the detection of structural flaws and providing one-click fixes for high-certainty schema issues, it streamlines the development of robust, secure, and highly performant AI agents across Claude Code, OpenCode, and Codex platforms.

주요 기능

011 GitHub stars

02Automated tool schema validation and description quality audits

03Security pattern scanning for command injection and path traversal

04MCP server configuration and transport type analysis

05Auto-fixing of high-certainty schema issues like missing required fields

06Plugin structure verification for Claude Code, OpenCode, and Codex

사용 사례

01Standardizing plugin.json structures and versioning across a development team

02Auditing existing plugins for security vulnerabilities and hardcoded secrets

03Validating a new MCP tool's JSON schema and parameter descriptions before deployment

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add agent-sh/enhance enhance-plugins

For use in Claude.ai and ChatGPT

Download Skill