{"id":50779442,"url":"https://github.com/rad-security/claude-code-plugin","last_synced_at":"2026-06-12T02:03:26.815Z","repository":{"id":349080884,"uuid":"1200868269","full_name":"rad-security/claude-code-plugin","owner":"rad-security","description":"AgentKeeper Claude Code and Cowork Plugin","archived":false,"fork":false,"pushed_at":"2026-06-10T16:30:24.000Z","size":3216,"stargazers_count":1,"open_issues_count":1,"forks_count":1,"subscribers_count":0,"default_branch":"main","last_synced_at":"2026-06-10T17:22:30.531Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"https://agentkeeper.dev","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/rad-security.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-04-03T23:25:59.000Z","updated_at":"2026-06-10T16:35:26.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/rad-security/claude-code-plugin","commit_stats":null,"previous_names":["rad-security/claude-code-plugin"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/rad-security/claude-code-plugin","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rad-security%2Fclaude-code-plugin","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rad-security%2Fclaude-code-plugin/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rad-security%2Fclaude-code-plugin/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rad-security%2Fclaude-code-plugin/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/rad-security","download_url":"https://codeload.github.com/rad-security/claude-code-plugin/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rad-security%2Fclaude-code-plugin/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":34225356,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-06-12T02:00:06.859Z","response_time":109,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2026-06-12T02:03:26.157Z","updated_at":"2026-06-12T02:03:26.801Z","avatar_url":"https://github.com/rad-security.png","language":"Shell","funding_links":[],"categories":[],"sub_categories":[],"readme":"# AgentKeeper Claude Code Plugin\n\nAgentKeeper provides real-time security scanning, threat detection, and compliance auditing for Claude Code. It works immediately on install — **no account, API key, or configuration required**. Built by [RAD Security](https://rad.security).\n\n## Install\n\n```\n/plugin marketplace add rad-security/claude-code-plugin\n/plugin install agentkeeper\n/reload-plugins\n```\n\nTo update later (third-party marketplaces do not auto-update):\n\n```\n/plugin marketplace update agentkeeper\n```\n\n## What it does\n\n[agentkeeper](./plugins/agentkeeper) hooks into Claude Code at four points — `UserPromptSubmit`, `PreToolUse`, `PostToolUse`, and `SessionStart` — to flag threats before they execute:\n\n- **Real-time threat detection** — credential exfiltration, reverse shells, prompt injection, and 24+ patterns.\n- **`/agentkeeper:audit`** — grades your Claude Code setup for misconfigurations.\n- **`/agentkeeper:inspect`** — audits installed plugins and skills for malicious behavior.\n- **`/agentkeeper:secrets`** — scans your project for exposed keys and credentials.\n- **`/agentkeeper:recap`** / **`/agentkeeper:scan`** — session summary and full host security scan.\n\nDefault mode is **warn** — threats are flagged, not blocked. Switch to blocking with `/agentkeeper:setup`.\n\n## Security \u0026 Privacy\n\nThis plugin installs PreToolUse hooks that run local shell scripts. We treat transparency about what they do as a first-class concern:\n\n- **Local-first, fail-open.** In local-only mode (no account connected) the plugin makes **zero network calls and sends zero telemetry** — all detection runs on your machine using a bundled engine. Every hook fails *open*: any error in a hook allows the tool call to proceed, so AgentKeeper can never block your work by failing.\n- **What runs.** Hooks inspect the prompt and tool input (command text, file paths, URLs) in-process to match threat patterns. Session data stays in `~/.agentkeeper-plugin/`.\n- **What is sent, and where — only when connected.** Running `/agentkeeper:connect` links a free account. From then on, hooks call the AgentKeeper API (`agentkeeper.dev`) to use the full pattern engine, org policies, and fleet visibility. Decision metadata for matched tool calls is sent to your dashboard; it is never shared with third parties.\n- **Credential handling.** Connecting provisions a per-device key stored locally under your home directory (`~/.agentkeeper/` / `~/.agentkeeper-plugin/`); it is the only credential the plugin holds and is used solely to authenticate to your own dashboard. Disconnect and remove all hooks/keys any time with `/agentkeeper:disconnect`.\n- **No secret values leave your machine.** The secret scanner reports *locations and types* of exposed credentials — it never transmits or prints the secret values themselves.\n- **License.** MIT — source is fully auditable in this repo.\n\n## Organization Deployment\n\nAdmins can deploy to an entire org via Claude Desktop:\n\n1. Organization settings → Plugins → Connect this GitHub repo\n2. Set AgentKeeper to \"Required\" for automatic deployment\n3. Manage policies centrally at [agentkeeper.dev](https://www.agentkeeper.dev)\n\n## License\n\nMIT — by [RAD Security](https://rad.security)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Frad-security%2Fclaude-code-plugin","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Frad-security%2Fclaude-code-plugin","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Frad-security%2Fclaude-code-plugin/lists"}