claude-agent-sdk

skills-sh:jezweb_claude-skills__claude-agent-sdk

View source

60/100

First Seen

Feb 18, 2026

Last Scanned

Feb 18, 2026

Findings

Score

60/100

CRITICAL 1

HIGH 1

LOW 3

Findings (5)

CRITICAL NLP_OVERRIDE_DANGEROUS prompt-injection L1

stdio, HTTP, SSE transport
Tool Definition:
tool
(
name
:
string
,
description
:
string
,
zodSchema
,
handler
)
Handler Return:
{
content
:
[
{
type
:
"text"
,
text
:
"..."
}
]
,
isError
?
:
boolean
}...

HIGH MCP_007 mcp-attack L334

get
strictMcpConfig + Send prompts and stream response

LOW EXTDL_004 external-download L1988

npm install -g @

LOW EXTDL_004 external-download L2024

npm install -g @

LOW THIRDPARTY_002 third-party-content L2421

github.com/anthropics/claude-agent-sdk-typescript/blob/main/CHANGELOG.md