repo-forensics

alexgreensh/repo-forensics

★ 97 stars Python Security Updated 7d ago

Offline security scanner for AI-agent repos, skills, plugins, and MCP servers.

View on GitHub → Try with Claude — $10 free →

Quick Install

Copy the config for your editor. Some servers may need additional setup — check the README.

Add to claude_desktop_config.json:

{
  "mcpServers": {
    "repo-forensics": {
      "command": "uvx",
      "args": [
        "repo-forensics"
      ]
    }
  }
}

Or install with pip: pip install repo-forensics

README Excerpt

<p align="center"> <img src="diagrams/hero.svg" alt="Repo Forensics v2" width="900"/> </p> <h1 align="center">Repo Forensics</h1> <h3 align="center">npm audit for AI-agent plugins, skills, and MCP servers.</h3> <p align="center"> Audit untrusted repos before they touch your agent. Fully local, zero dependencies, zero telemetry.

Topics

agent-securityagent-skillagent-skillsai-agent-securityclaude-codeclaude-skillscodexdeveloper-toolsforensicsmcp-securityopenclaw-skillspluginssecuritysecurity-auditsecurity-scanner

repo-forensics

Quick Install

README Excerpt

Topics

Related Security Servers