{"skill":{"slug":"moltcops","displayName":"Moltcops","summary":"Pre-install security scanner for AI agent skills. Detects malicious patterns before you trust code. Local-first — code never leaves your machine.","tags":{"latest":"1.1.0","safety":"1.0.1","scanner":"1.0.1","security":"1.0.1"},"stats":{"comments":0,"downloads":1263,"installsAllTime":0,"installsCurrent":0,"stars":2,"versions":4},"createdAt":1770617644397,"updatedAt":1777525053807},"latestVersion":{"version":"1.1.0","createdAt":1770731788395,"changelog":"MC-021: Hallucinated Package Reference (CRITICAL) - flags npx/bunx/dlx executing unverified packages. MC-025: HTML Comment Injection (CRITICAL) - detects executable commands hidden in HTML comments. MC-026: Unsafe Package Install (HIGH) - flags npm/yarn/pnpm install without --ignore-scripts. MC-027: Insecure Bind Address (HIGH) - catches 0.0.0.0 binding that exposes agents to public internet. All backed by real-world incidents from BitsecAI and SecurityScorecard STRIKE reports.","license":null},"metadata":null,"owner":{"handle":"adamthompson33","userId":"publishers:adamthompson33","displayName":"Adamthompson33","image":"https://avatars.githubusercontent.com/u/256450073?v=4"},"moderation":null}