Stop trusting your agent skills with vibes. Eliminate the context security risk.

When you install an npm package, you can run npm audit. When you install a Python package, there's pip-audit. But when you install plugins that give your AI agent new skills and rules, you know, things that directly shape how it reasons and what it does, what do you run? If your answer is "nothing", you're not alone, and that's why I built tessl-audit! You can check it out on GitHub and npm. Why this matters than you think Agent plugins are instructions that get loaded into your AI agent's context. A plugin with a security issue doesn't just expose a server endpoint.