Package Exports
- vskill
- vskill/dist/index.js
This package does not declare an exports field, so the exports above have been automatically detected and optimized by JSPM instead. If any package subpath is missing, it is recommended to post an issue to the original package (vskill) to support the "exports" field. If that is not possible, create a JSPM override to customize the exports field for this package.
Readme
vskill
Secure multi-platform AI skill installer. Scan before you install.
npx vskill add owner/repoWhy?
- 36.82% of AI skills have security flaws (Snyk ToxicSkills)
- Zero versioning on major platforms — updates can inject malware silently
- No pre-install scanning — you're trusting blindly
vskill fixes this with three-tier verification and version-pinned trust.
Commands
vskill add <owner/repo> # Install skill after security scan
vskill scan <source> # Scan without installing
vskill list # Show installed skills with status
vskill submit <source> # Submit for verification on verified-skill.com
vskill update # Update with diff scanning39 Agent Platforms
Works across Claude Code, Cursor, GitHub Copilot, Windsurf, Codex, Gemini CLI, Cline, Amp, Roo Code, and 30 more.
Three-Tier Verification
| Tier | Method | Badge |
|---|---|---|
| Scanned | 37 deterministic pattern checks | Basic Trust |
| Verified | Scanner + LLM intent analysis | Recommended |
| Certified | Full manual security review | Highest Trust |
Version Pinning
Every install creates a vskill.lock with SHA, scan date, and tier. Updates run diff scanning — new patterns flagged before install.
Registry
Browse verified skills at verified-skill.com.
License
MIT