🎯

safe-chain

🎯Skill

from strozw/agent-skills

What it does

Enforces malware scanning by automatically routing package manager commands through a secure verification process for Node.js, Python, and other package ecosystems.

safe-chain

Installation

npm installInstall npm package

npm install express

npm installInstall npm package

npm install -g typescript

📖 Extracted from docs: strozw/agent-skills

Need more details? View full documentation on GitHub →

1Installs

AddedFeb 4, 2026

View on GitHub Back to Skills

Skill Details

SKILL.md

Enforce malware scanning by routing package manager commands through safe-chain

Overview

# Safe Chain Skill

This skill improves security by automatically routing package manager commands through safe-chain.

Covered commands

When running the following commands, you must always route them through safe-chain:

Node.js/JavaScript

npm -> safe-chain npm
npx -> safe-chain npx
yarn -> safe-chain yarn
pnpm -> safe-chain pnpm
pnpx -> safe-chain pnpx
bun -> safe-chain bun
bunx -> safe-chain bunx

Python

pip -> safe-chain pip
pip3 -> safe-chain pip3
uv -> safe-chain uv
uvx -> safe-chain uv tool run
poetry -> safe-chain poetry
pipx -> safe-chain pipx

Execution rules

Required for package installs and updates

- ✅ Correct: safe-chain npm install express

- ❌ Incorrect: npm install express

Required for running scripts

- ✅ Correct: safe-chain npx create-react-app my-app

- ❌ Incorrect: npx create-react-app my-app

Required for global installs

- ✅ Correct: safe-chain npm install -g typescript

- ❌ Incorrect: npm install -g typescript

Required for updating existing dependencies

- ✅ Correct: safe-chain npm update

- ❌ Incorrect: npm update

Verification

To confirm that safe-chain is working correctly:

```bash

# Test a Node.js package

safe-chain npm install safe-chain-test

# Test a Python package

safe-chain pip3 install safe-chain-pi-test

# Check the safe-chain version

safe-chain --version

```

Exceptions

The following commands do not need to go through safe-chain:

npm run