Legal

Legal Notice (Impressum)

SkillScan

A free security verification service for AI agent skills.

Operated by Webcreatics e.U.

contact@skillscan.dev

Privacy Policy

1. Data Collection

We collect minimal data when you use our service:

  • Email address (optional, for verification notifications)
  • GitHub repository URLs (for security scans)
  • GitHub username (when authenticating via GitHub)

2. Data Usage

Your data is used exclusively for:

  • Performing security scans
  • Sending verification confirmations
  • Displaying verified skills in the public registry

3. Data Storage

Repository code is fetched via GitHub API for analysis and is not stored permanently. Only scan results and metadata are retained in our database.

4. Third Parties

We use industry-standard cloud services for hosting, database storage, and authentication. Your data may be processed by these providers in accordance with their privacy policies.

5. Cookies & Analytics

This site uses only essential cookies required for authentication (session cookies). Under GDPR, consent is not required for strictly necessary cookies.

We use Vercel Analytics for privacy-friendly usage statistics. Vercel Analytics does not use cookies, does not track users across sites, and does not collect personal information. Data is aggregated and anonymized.

6. Your Rights

You have the right to:

  • Access your stored data
  • Request correction or deletion of your data
  • Request removal of your skill from the registry

Contact us at contact@skillscan.dev to exercise these rights.

Terms of Service

1. Service Description

SkillScan provides free automated security scans for AI agent skills, tools, and plugins. Our scans detect common security patterns but do not guarantee the absence of vulnerabilities.

2. Verification Badge

The verification badge indicates that a specific commit was scanned and met our security criteria at the time of verification. Code changes after verification will invalidate this status, which is reflected in real-time on badges and the registry.

3. Disclaimer & Limitation of Liability

SkillScan uses automated scanning including AI-based analysis. While we strive for accuracy, no automated tool can guarantee complete security. False positives and false negatives may occur.

A "Verified" badge indicates the skill passed our automated checks at a specific point in time — it is not a guarantee of safety.

SkillScan is provided "as is" without warranty of any kind. We are not liable for any damages arising from:

  • Use of verified or unverified skills
  • Reliance on scan results
  • Security incidents involving scanned code

Users are responsible for their own due diligence before using any third-party code.

4. Donations

SkillScan is a free service. Donations help cover hosting and development costs but do not grant any additional features or priority support.

5. Changes

We reserve the right to modify these terms at any time. Continued use of the service constitutes acceptance of updated terms.

Last updated: February 2026