Plugin Auditor

关于

The Plugin Auditor is a specialized skill designed to automate the rigorous review process for Claude Code plugins, ensuring they meet strict security, quality, and repository standards. It systematically scans for hardcoded secrets, dangerous command patterns, and directory structure violations while validating compliance with CLAUDE.md and marketplace requirements. By providing a detailed quality score and actionable remediation steps, this skill helps developers harden their plugins against vulnerabilities and streamline the path to official marketplace inclusion.

主要功能

• Auto-fix capabilities for script permissions, formatting, and versioning issues
• Marketplace compliance verification including JSON schema and version consistency
• 3 GitHub stars
• Structural validation against CLAUDE.md and plugin directory standards
• Automated security scanning for secrets, AWS keys, and dangerous command patterns
• Detailed audit reporting with quality scores and categorized severity levels

使用场景

• Automated quality assurance during development or before merging pull requests
• Pre-publication security review for new Claude Code plugins before submission
• Maintaining high code quality and repository standards across custom internal plugin suites