Add skill-audit-mcp to Tools

[eltociear]

Adds skill-audit-mcp to the Tools section.

Static security scanner for MCP servers, AI agent skills, and plugins. Detects 68 attack patterns across 4 severity levels — credential exfiltration, prompt injection, code execution, seed-phrase harvesting, auth bypass, path traversal.

• SARIF 2.1.0 output for GitHub Code Scanning
• Zero dependencies, Python 3.6+
• Also a GitHub Action: uses: eltociear/skill-audit-mcp@v1
• Glama-verified

Summary by CodeRabbit

릴리스 노트

• 문서
  • README의 Tools 섹션에 새로운 도구 항목 추가됨

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 2b531110-3420-4df7-b4ec-b78bc7f47ee0

📥 Commits

Reviewing files that changed from the base of the PR and between c8ae124 and aa58531.

📒 Files selected for processing (1)

• README.md

📜 Recent review details

🔇 Additional comments (1)

README.md (1)

121-121: Tools 섹션 추가 항목이 기존 포맷과 잘 일치합니다.

링크, 설명, stars 배지 형식이 현재 목록 규칙과 맞고 PR 목적에도 부합합니다.

---

요약

README의 Tools 섹션에 skill-audit-mcp 도구 항목 1줄이 추가되었습니다. MCP 서버, 에이전트 스킬, 플러그인의 정적 스캔을 지원하며 SARIF 출력 및 GitHub Action을 제공합니다.

변경사항

Tools 섹션 업데이트

레이어 / 파일	요약
도구 목록 추가 README.md	Tools 목록에 skill-audit-mcp 항목 추가: GitHub 링크, 기능 설명(정적 스캔, SARIF 출력, GitHub Action), GitHub 별 배지 포함.

코드 검토 노력 추정

🎯 1 (매우 간단함) | ⏱️ ~2분

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	PR 제목은 변경 사항의 주요 내용을 명확하게 요약하고 있습니다. README에 skill-audit-mcp 도구를 Tools 섹션에 추가한다는 내용을 정확하게 반영하고 있습니다.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

Tip

💬 Introducing Slack Agent: The best way for teams to turn conversations into code.

Slack Agent is built on CodeRabbit's deep understanding of your code, so your team can collaborate across the entire SDLC without losing context.

• Generate code and open pull requests
• Plan features and break down work
• Investigate incidents and troubleshoot customer tickets together
• Automate recurring tasks and respond to alerts with triggers
• Summarize progress and report instantly

Built for teams:

• Shared memory across your entire org—no repeating context
• Per-thread sandboxes to safely plan and execute work
• Governance built-in—scoped access, auditability, and budget controls

One agent for your entire SDLC. Right inside Slack.

👉 Get started

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

Warning

⚠️ This pull request might be slop. It has been flagged by CodeRabbit slop detection and should be reviewed carefully.