Stats
Actions
Tags
'%20stop-opacity%3D'0.16'%2F%3E%3Cstop%20offset%3D'1'%20stop-color%3D'rgb(200%2C90%2C60)'%20stop-opacity%3D'0.03'%2F%3E%3C%2FlinearGradient%3E%3C%2Fdefs%3E%3Crect%20width%3D'320'%20height%3D'200'%20fill%3D'url(%23g)'%2F%3E%3Ccircle%20cx%3D'250'%20cy%3D'56'%20r%3D'92'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.06'%2F%3E%3Ccircle%20cx%3D'64'%20cy%3D'172'%20r%3D'58'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.05'%2F%3E%3C%2Fsvg%3E)
From soundcheck
Detects agent-to-agent calls missing authentication, authorization, or permission scoping. Use when building multi-agent pipelines, spawning subagents, or delegating tasks between LLM agents.
How this skill is triggered — by the user, by Claude, or both
Slash command
/soundcheck:multi-agent-trustThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Detects agent-to-agent calls that lack authentication, authorization, or permission
Detects agent-to-agent calls that lack authentication, authorization, or permission scoping. When agents blindly trust messages from other agents, a compromised or malicious agent can hijack the entire pipeline.
Flag the vulnerable call site and explain the risk. Then suggest a fix that establishes these properties:
Translate each principle to the transport, auth library, and validator of the audited code. Use the framework's documented auth-middleware and schema-validation APIs — do not roll your own.
npx claudepluginhub thejefflarson/soundcheck --plugin soundcheckDetects and prevents autonomous LLM agents from taking irreversible or high-impact actions without human approval. Use when building agentic workflows with tool use.
Applies least-privilege tool allowlisting, identity binding, HITL controls, and audit logging for agent tool calls. Use to bound blast radius of prompt injection or tool poisoning.
Enforces SPIFFE/SPIRE plus mTLS for authenticating agent-to-agent communication. Use when designing or reviewing multi-agent system security.