Library/github/mcp-security-audit

Public skill / source-pinned

mcp-security-audit

Audit MCP (Model Context Protocol) server configurations for security issues. Use this skill when: - Reviewing .mcp.json files for security risks - Checking MCP server args for hardcoded secrets or shell injection patterns - Validating that MCP servers use pinned versions (not @latest) - Detecting unpinned dependencies in MCP server configurations - Auditing which MCP servers a project registers and whether they're on an approved list - Checking for environment variable usage vs. hardcoded credentials in MCP configs - Any request like "is my MCP config secure?", "audit my MCP servers", or "check .mcp.json" keywords: [mcp, security, audit, secrets, shell-injection, supply-chain, governance]

Agent SkillGitHub sourceDigest checked

Package / manifest

The exact contents,
before install.

Source
github/awesome-copilot
Content SHA
8984bf14b1ec6ad6
Package digest
d6d1294d4b93dbf9
Download size
3.2 KB