REPOGEO REPORT · LITE

cisco-ai-defense/skill-scanner

Default branch main · commit ff708ea0 · scanned 5/10/2026, 5:11:21 AM

GitHub: 1,951 stars · 239 forks

AI VISIBILITY SCORE

33 /100

Critical

Category recall

0 / 2

Not recommended in any query

Rule findings

2 pass · 0 warn · 0 fail

Objective metadata checks

AI knows your name

2 / 3

Direct prompts that named your repo

HOW TO READ THIS REPORT

Action plan is what to do next — copy-pasteable changes prioritized by impact. Category visibility is the real GEO test: when a user asks an AI a brand-free question that should surface cisco-ai-defense/skill-scanner, does the AI actually recommend you — or your competitors? Objective checks verify the metadata signals AI engines weight first. Self-mention check detects whether AI even knows you exist by name.

Action plan — copy-paste fixes

3 prioritized changes generated by gemini-2.5-flash. Mark items done after you ship the fix.

OVERALL DIRECTION

highreadme#1

Reposition README H1 and opening paragraph to clarify 'AI Agent Skills'

Why:

CURRENT

# Skill Scanner
...
A best-effort security scanner for AI Agent Skills that detects prompt injection, data exfiltration, and malicious code patterns.

COPY-PASTE FIX

# Skill Scanner: Security for AI Agent Skills
A best-effort security scanner specifically designed for **AI Agent Skills** (e.g., OpenAI Codex Skills, Cursor Agent Skills). It detects prompt injection, data exfiltration, and malicious code patterns, differentiating itself from general code analysis tools by focusing on the unique security challenges of AI agents.

mediumreadme#2

Add explicit license clarification to README

Why:

COPY-PASTE FIX

Add a section or line in the README, e.g., 'This project is licensed under [Specific License Name(s) from the LICENSE file]. See the [LICENSE file](LICENSE) for details.' (Replace bracketed text with the actual license name(s) from your LICENSE file).

mediumtopics#3

Expand GitHub topics with specific AI security terms

Why:

CURRENT

agent, agent-skills, security

COPY-PASTE FIX

agent, agent-skills, security, prompt-injection, data-exfiltration, ai-security, llm-security

Category GEO backends resolved for this scan: google/gemini-2.5-flash, deepseek/deepseek-v4-flash

Category visibility — the real GEO test

Brand-free queries asked to google/gemini-2.5-flash. Did AI recommend you, or someone else?

Same questions for every model — switch tabs to compare answers and rankings.

Recall

0 / 2

0% of queries surface cisco-ai-defense/skill-scanner

Avg rank

—

Lower is better. #1 = top recommendation.

Share of voice

Of all named tools, what % are you?

Top rival

guardrails-ai/guardrails

Recommended in 1 of 2 queries

COMPETITOR LEADERBOARD

guardrails-ai/guardrails · recommended 1×
Microsoft Azure AI Content Safety · recommended 1×
Google Cloud DLP · recommended 1×
OpenAI Moderation API · recommended 1×
langchain-ai/langchain · recommended 1×

CATEGORY QUERY
How can I secure my AI agent skills from prompt injection and data exfiltration attacks?
you: not recommended
AI recommended (in order):
1. Guardrails AI (guardrails-ai/guardrails)
2. Microsoft Azure AI Content Safety
3. Google Cloud DLP
4. OpenAI Moderation API
5. LangChain (langchain-ai/langchain)
6. OWASP Top 10 for LLM Applications
7. Semantic Kernel (microsoft/semantic-kernel)
8. Intel SGX
9. AMD SEV
AI recommended 9 alternatives but never named cisco-ai-defense/skill-scanner. This is the gap to close.
Show full AI answer
CATEGORY QUERY
What tools detect malicious code patterns and data exfiltration in AI agent applications?
you: not recommended
AI recommended (in order):
1. Snyk Code
2. Checkmarx SAST (CxSAST)
3. OWASP ZAP (Zed Attack Proxy)
4. PortSwigger Burp Suite Enterprise Edition
5. Palo Alto Networks Prisma Cloud
6. Splunk Enterprise Security
7. Elastic Security
8. Deepfence ThreatMapper
9. Deepfence ThreatStryker
AI recommended 9 alternatives but never named cisco-ai-defense/skill-scanner. This is the gap to close.
Show full AI answer

Objective checks

Rule-based audits of metadata signals AI engines weight most.

Metadata completeness
pass
README presence
pass

Self-mention check

Does AI even know your repo exists when asked about it directly?

Compared to common alternatives in this category, what is the core differentiator of cisco-ai-defense/skill-scanner?
pass
AI did not name cisco-ai-defense/skill-scanner — likely talking about a different project
AI answers can be confidently wrong. Read for accuracy: does it match your actual tech stack, audience, and differentiator?
If a team adopts cisco-ai-defense/skill-scanner in production, what risks or prerequisites should they evaluate first?
pass
AI named cisco-ai-defense/skill-scanner explicitly
AI answers can be confidently wrong. Read for accuracy: does it match your actual tech stack, audience, and differentiator?
In one sentence, what problem does the repo cisco-ai-defense/skill-scanner solve, and who is the primary audience?
pass
AI named cisco-ai-defense/skill-scanner explicitly
AI answers can be confidently wrong. Read for accuracy: does it match your actual tech stack, audience, and differentiator?

Embed your GEO score

Drop this badge into the README of cisco-ai-defense/skill-scanner. It auto-updates whenever the report is rescanned and links back to the latest report — easy public proof that you care about AI discoverability.

Live preview

MARKDOWN (README)

[![RepoGEO](https://repogeo.com/badge/cisco-ai-defense/skill-scanner.svg)](https://repogeo.com/en/r/cisco-ai-defense/skill-scanner)

HTML

<a href="https://repogeo.com/en/r/cisco-ai-defense/skill-scanner"><img src="https://repogeo.com/badge/cisco-ai-defense/skill-scanner.svg" alt="RepoGEO" /></a>

Pro

Subscribe to Pro for deep diagnoses

cisco-ai-defense/skill-scanner — Lite scans stay free; this card itemizes Pro deep limits vs Lite.

Deep reports10 / month
Brand-free category queries5 vs 2 in Lite
Prioritized action items8 vs 3 in Lite