← Back to Skills

Github Repo Auditor

🌐Community
by famaoai-creator Β· vlatest Β· Repository

Analyzes GitHub repositories for code quality, security vulnerabilities, and adherence to coding standards.

Install on your platform

We auto-selected Claude Code based on this skill’s supported platforms.

1

Run in terminal (recommended)

terminal
claude mcp add github-repo-auditor npx -- -y @trustedskills/github-repo-auditor
2

Or manually add to ~/.claude/settings.json

~/.claude/settings.json
{
  "mcpServers": {
    "github-repo-auditor": {
      "command": "npx",
      "args": [
        "-y",
        "@trustedskills/github-repo-auditor"
      ]
    }
  }
}

Requires Claude Code (claude CLI). Run claude --version to verify your install.

About This Skill

What it does

The github-repo-auditor skill analyzes GitHub repositories to identify potential security vulnerabilities and code quality issues. It can check for common problems like outdated dependencies, unused code, and license compliance violations. The tool provides a structured report summarizing these findings, allowing users to quickly assess the health of their codebase.

When to use it

  • Security Audits: Before merging new code or deploying an application, ensure no newly introduced vulnerabilities exist.
  • Dependency Management: Identify outdated dependencies that could pose security risks or compatibility issues.
  • Code Quality Reviews: Quickly assess the overall quality of a repository and identify areas for improvement.
  • Open Source Compliance: Verify license compliance within a project by identifying all licenses used in dependencies.

Key capabilities

  • Dependency vulnerability scanning
  • Unused code detection
  • License identification and compliance checking
  • Report generation with findings summary

Example prompts

  • "Analyze the repository at https://github.com/owner/repo for security vulnerabilities."
  • "Generate a report detailing license usage in the project located at https://github.com/org/project."
  • β€œFind unused code within the repository https://github.com/user/my-repo.”

Tips & gotchas

The skill requires access to the internet and sufficient permissions to read the target GitHub repository. It's recommended to specify a specific branch or tag for more targeted analysis, as scanning an entire repository history can be time-consuming.

View Repository β†’

Tags

πŸ›‘οΈ

TrustedSkills Verification

Unlike other registries that point to live repositories, TrustedSkills pins every skill to a verified commit hash. This protects you from malicious updates β€” what you install today is exactly what was reviewed and verified.

Security Audits

Gen Agent Trust HubPass
SocketPass
SnykPass

Details

Version
vlatest
License
Author
famaoai-creator
Installs
14
Repository (canonical source) β†’

🌐 Community

Passed automated security scans.