Comprehensive Threat Detection

Six detection categories, 50+ patterns — catching the attacks that matter.

💉

Catches role-override phrases, jailbreak attempts, and instruction hijacking patterns before they compromise your agent.

📡

Identifies suspicious external network calls, fetch/curl patterns targeting unknown endpoints that could steal your data.

🔑

Scans for hardcoded API keys, tokens (sk-, ghp_, AKIA*), and credentials embedded in skill code.

⚡

Flags dangerous eval(), exec(), subprocess, and shell command patterns that could run arbitrary code on your system.

🗂️

Detects attempts to read .env files, /etc/passwd, SSH keys, and other sensitive system files.

🔐

Uncovers base64-encoded payloads and other obfuscation techniques used to hide malicious intent.