BeClaude

ai-plugins

Official PluginGeneralby Anthropic

Set up endorctl and use Endor Labs to scan, prioritize, and fix security risks across your software supply chain

First seen 4/17/2026

Summary

This skill configures Endor Labs' endorctl CLI tool within your environment, enabling you to scan your software dependencies for vulnerabilities, prioritize risks based on reachability and exploitability, and apply automated fixes.

  • It helps developers secure their software supply chain without leaving the terminal.

Install & Usage

1
Add a marketplace
/plugin marketplace add <org/repo>
2
Install the plugin

Add the configuration to /plugin install ai-plugins@<marketplace>

3
Manage with /plugin
/plugin

Use Cases

Scan a project's dependencies for known vulnerabilities and generate a prioritized risk report.
Identify which vulnerable dependencies are actually reachable in your code to focus remediation efforts.
Automatically create pull requests to upgrade vulnerable packages to safe versions.
Enforce security policies by blocking builds that introduce critical or high-severity dependencies.
Audit your software supply chain for license compliance and malicious packages.
Integrate security scanning into your CI/CD pipeline using Endor Labs policies.

Usage Examples

1

/ai-plugins scan my project with Endor Labs and show me the top 5 critical vulnerabilities

2

Use Endor Labs to check if any of our dependencies have known exploits and suggest fixes

3

Run endorctl scan and output the results as a JSON file for further analysis

View source on GitHub
securityplugin

Security Audits

LicenseUnknownSourcePassRepositoryPass

Frequently Asked Questions

What is ai-plugins?

This skill configures Endor Labs' endorctl CLI tool within your environment, enabling you to scan your software dependencies for vulnerabilities, prioritize risks based on reachability and exploitability, and apply automated fixes. It helps developers secure their software supply chain without leaving the terminal.

How to install ai-plugins?

To install ai-plugins: add a marketplace (/plugin marketplace add <org/repo>), then add the config to /plugin install ai-plugins@<marketplace>. Finally, /plugin in Claude Code.

What is ai-plugins best for?

ai-plugins is a plugin categorized under General. It is designed for: security, plugin. Created by Anthropic.

What can I use ai-plugins for?

ai-plugins is useful for: Scan a project's dependencies for known vulnerabilities and generate a prioritized risk report.; Identify which vulnerable dependencies are actually reachable in your code to focus remediation efforts.; Automatically create pull requests to upgrade vulnerable packages to safe versions.; Enforce security policies by blocking builds that introduce critical or high-severity dependencies.; Audit your software supply chain for license compliance and malicious packages.; Integrate security scanning into your CI/CD pipeline using Endor Labs policies..