Audits a project's dependency tree for supply-chain risk - typosquats, maintainer changes, and known-bad packages.
Run in a terminal:
/plugin marketplace add trailofbits/skills /plugin install supply-chain-risk-auditor@trailofbits
https://wingmanprotocol.com/mcp.