agentguard/
├── skills/agentguard/ # Agent Skills definition
│ ├── SKILL.md # Skill entry point
│ ├── scan-rules.md # Detection rule reference
│ ├── action-policies.md # Action policy reference
│ ├── web3-patterns.md # Web3 patterns reference
│ └── scripts/ # CLI tools (trust-cli, action-cli, guard-hook)
├── hooks/hooks.json # Plugin hooks configuration
├── src/ # TypeScript source
│ ├── scanner/ # 20-rule static analysis engine
│ ├── action/ # Runtime action evaluator + GoPlus integration
│ ├── registry/ # Trust level management
│ ├── policy/ # Default policies and presets
│ └── tests/ # Test suite
├── examples/vulnerable-skill/ # Demo project for testing
├── data/registry.json # Trust registry storage
├── setup.sh # One-click install script
└── dist/ # Compiled output
┌──────────────────────────────────────────────────────┐
│ Layer 1: Auto Guard (hooks — install once, forget) │
│ ┌──────────────┐ ┌──────────────┐ ┌──────────────┐ │
│ │ PreToolUse │ │ PostToolUse │ │ Config │ │
│ │ Block danger │ │ Audit log │ │ 3 levels │ │
│ └──────┬───────┘ └──────┬───────┘ └──────┬───────┘ │
│ └────────┬───────┘ │ │
│ ▼ │ │
│ ActionScanner Engine ◄────────────┘ │
└──────────────────────────────────────────────────────┘
┌──────────────────────────────────────────────────────┐
│ Layer 2: Deep Scan (skill — on demand) │
│ /agentguard scan — 20-rule static analysis │
│ /agentguard action — Runtime action evaluation │
│ /agentguard trust — Skill trust management │
│ /agentguard report — Security event log │
└──────────────────────────────────────────────────────┘
npm install && npm run build && npm test32 tests across 4 suites: scanner rules, exec command detector, network request detector, and registry CRUD.