---
title: "Snyk Agent Scan"
description: "Scan your AI agents, MCP servers, and skills for security vulnerabilities from the command line. Snyk Agent Scan discovers and audits every agent component on your machine — detecting prompt injections, tool poisoning, toxic flows, malware payloads, and credential handling issues across 15+ distinct risk categories."
verification: "security_reviewed"
source: "https://github.com/snyk/agent-scan"
author: "Snyk"
publisher_type: "company"
category:
  - "Security & Verification"
framework:
  - "MCP"
tool_ecosystem:
  github_repo: "snyk/agent-scan"
  github_stars: 2297
---

# Snyk Agent Scan

Scan your AI agents, MCP servers, and skills for security vulnerabilities from the command line. Snyk Agent Scan discovers and audits every agent component on your machine — detecting prompt injections, tool poisoning, toxic flows, malware payloads, and credential handling issues across 15+ distinct risk categories.

## Prerequisites

Python 3.10+, uv package manager, Snyk API token

## Installation

Choose whichever fits your setup:

1. Copy this skill folder into your local skills directory.
2. Clone the repo and symlink or copy the skill into your agent workspace.
3. Add the repo as a git submodule if you manage shared skills centrally.
4. Install it through your internal provisioning or packaging workflow.
5. Download the folder directly from GitHub and place it in your skills collection.

## Documentation

- https://github.com/snyk/agent-scan/blob/main/docs/scanning.md

## Source

- [Agent Skill Exchange](https://agentskillexchange.com/skills/snyk-agent-scan/)