SkillSpector is a security analysis tool designed specifically for AI agent skills used by coding assistants like Claude Code, Codex CLI, and Gemini CLI. It provides multi-format scanning across Git repositories, URLs, and local files, detecting 64 vulnerability patterns across 16 categories including prompt injection, data exfiltration, privilege escalation, and MCP-specific attacks. The tool implements a two-stage analysis combining fast static analysis with optional LLM semantic evaluation, and integrates with OSV.dev for real-time CVE lookups.