Skip to content

endorlabs/ai-plugins

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

85 Commits
.agents/plugins
.agents/plugins
Β 
Β 
.claude-plugin
.claude-plugin
Β 
Β 
.cursor-plugin
.cursor-plugin
Β 
Β 
.github
.github
Β 
Β 
agents
agents
Β 
Β 
assets
assets
Β 
Β 
cursor-sdk
cursor-sdk
Β 
Β 
docs
docs
Β 
Β 
plugins
plugins
Β 
Β 
provenance
provenance
Β 
Β 
scripts
scripts
Β 
Β 
skills
skills
Β 
Β 
.gitignore
.gitignore
Β 
Β 
.mcp.json
.mcp.json
Β 
Β 
CHANGELOG.md
CHANGELOG.md
Β 
Β 
GEMINI.md
GEMINI.md
Β 
Β 
LICENSE
LICENSE
Β 
Β 
README.md
README.md
Β 
Β 
llms.txt
llms.txt
Β 
Β 

Repository files navigation

🧩 Endor Labs AI Plugins

Public distribution repository for Endor Labs Agent Kit packages across Claude Code, Codex, Gemini CLI, Antigravity CLI, Cursor IDE, Cursor SDK, and root MCP support context.

Important

This repo is the distribution mirror. Agent behavior, generated package shape, guardrails, tests, and source documentation are owned by πŸ™ The Endor Labs Agent Kit.

Current generated Agent Kit package version: 2.0.0. Agent Kit maintainer merges open or update generated distribution PRs in this repo, but they do not automatically bump package versions. Version bumps are intentional release actions from the source repo.

🚦 Start Here

I want to... Go here
πŸš€ Install a host package Quick Start
🧾 See what changed CHANGELOG.md
πŸ–±οΈ Use Cursor IDE agents Cursor IDE
🐍 Run Cursor SDK automation cursor-sdk/README.md
πŸ€– Ask an agent to review this mirror docs/for-agents.md
πŸ“¦ Sync from Agent Kit source docs/distribution-sync.md
βœ… Prepare a release docs/plugin-release-checklist.md

A machine-readable index is available in llms.txt.

🧭 Browse The Distribution

Area What is inside
πŸ§‘β€πŸ’» Claude Code .claude-plugin/marketplace.json, plugins/claude/endor-labs-agent-kit/, legacy plugins/claude/ai-plugins/
🧠 Codex .agents/plugins/marketplace.json, plugins/codex/endor-labs-agent-kit/
πŸ’Ž Gemini CLI plugins/gemini/endor-labs-agent-kit/
πŸ›« Antigravity CLI plugins/antigravity/endor-labs-agent-kit/
πŸ–±οΈ Cursor IDE .cursor-plugin/, root agents/, root skills/, assets/logo.svg
🐍 Cursor SDK cursor-sdk/ Python launcher, generated prompts, and agent definitions
πŸ” Root support .mcp.json, GEMINI.md
🧾 Release docs docs/, llms.txt, plugins/README.md

πŸš€ Quick Start

Pick your host, install the package, then run setup. Setup checks local readiness and does not run scans.

Use the endor-agent-kit-setup skill to check Endor Agent Kit readiness. Do not run scans.

Claude Code

Install the preferred package id:

/plugin marketplace add endorlabs/ai-plugins
/plugin install endor-labs-agent-kit@endorlabs
/reload-plugins
/agents

Existing Claude Code users pinned to the historical id can keep using:

/plugin marketplace add endorlabs/ai-plugins
/plugin install ai-plugins@endorlabs
/reload-plugins
/agents

Do not enable endor-labs-agent-kit@endorlabs and ai-plugins@endorlabs in the same Claude profile for normal use. They expose the same setup skill and agents.

Details: plugins/claude/endor-labs-agent-kit/README.md.

Codex

Add the Endor Labs marketplace, restart Codex, then install Endor Labs Agent Kit from the Codex plugin directory:

codex plugin marketplace add endorlabs/ai-plugins \
  --sparse .agents/plugins \
  --sparse plugins/codex/endor-labs-agent-kit

After installation, start a new Codex thread and ask setup to install or update the bundled Endor custom agents:

Use the endor-agent-kit-setup skill to check readiness and install the bundled Codex custom agents.

Details: plugins/codex/endor-labs-agent-kit/README.md.

Cursor IDE

Install the current public Cursor Marketplace package from Cursor Agent chat:

/add-plugin endorlabs

Marketplace page: cursor.com/marketplace/endorlabs.

Open the target project folder, reload Cursor if prompted, then run setup:

Use the endor-agent-kit-setup skill to set up endorctl.

Cursor SDK

Use the SDK lane for Python automation, CI, orchestration, backend services, or Cursor cloud agents:

python3 -m pip install -r cursor-sdk/requirements.txt
export CURSOR_API_KEY="crsr_..."
python cursor-sdk/run_cursor_agent.py endor-probe-droid-agent \
  --workspace /path/to/repo \
  "Explain what evidence you need to assess GitHub onboarding gaps. Keep it read-only."

Cloud run shape:

python cursor-sdk/run_cursor_agent.py endor-sca-remediation-agent \
  --mode cloud \
  --repo-url https://github.com/your-org/your-repo \
  --ref main \
  "Prepare a remediation plan only. Do not edit files or open a PR."

Gemini CLI

Install the generated Gemini extension package from the public repository:

git clone https://github.com/endorlabs/ai-plugins
gemini extensions install ./ai-plugins/plugins/gemini/endor-labs-agent-kit
gemini extensions list

For local validation from a checkout, install the generated extension directory:

gemini extensions install ./plugins/gemini/endor-labs-agent-kit

Restart Gemini CLI after installing or reinstalling the extension.

Details: plugins/gemini/endor-labs-agent-kit/README.md.

Antigravity CLI

Clone the distribution repo, then install the generated plugin directory:

git clone https://github.com/endorlabs/ai-plugins
cd ai-plugins
agy plugin validate ./plugins/antigravity/endor-labs-agent-kit
agy plugin install ./plugins/antigravity/endor-labs-agent-kit
agy plugin list

Some Antigravity installs expose the command as antigravity instead of agy; use the same plugin validate, plugin install, and plugin list subcommands. Restart Antigravity CLI if newly installed skills or subagents are not visible.

Details: plugins/antigravity/endor-labs-agent-kit/README.md.

⚑ Agent Quick Starts

Agent Best for Cursor / SDK name Safety First prompt
πŸ”Ž AI SAST Triage Triage Endor AI SAST findings and prepare approved change requests endor-ai-sast-triage-agent approval-gated mutating Triage AI SAST findings for this repository. Do not edit files, open a PR/MR, create a ticket, or write an Endor policy until I approve the specific gate.
🧯 Endor Troubleshooter Diagnose setup, scan, auth, policy, or integration issues endor-troubleshooter-agent read-only Diagnose this Endor issue from redacted error text and read-only tenant evidence. Keep it read-only.
πŸ“‘ Probe Droid Assess GitHub onboarding and monitored-branch coverage gaps endor-probe-droid-agent read-only Explain what evidence you need to assess GitHub onboarding gaps for this repository. Keep it read-only.
πŸ› οΈ SCA Remediation Find safe dependency remediation paths with Endor SCA evidence endor-sca-remediation-agent approval-gated mutating Inspect this repository and prepare a remediation plan only. Do not edit files, create branches, push, open a PR/MR, create a ticket, or write Endor policy.
🧰 Setup Check host, auth, namespace, endorctl, gh, and workflow readiness endor-agent-kit-setup-agent read-only Check Endor Agent Kit readiness for this repository. Do not run scans.

Claude Code also includes read-only helper agents for dependency decisions, package risk summaries, repository dependency review, upgrade impact analysis, vulnerability explanation, and remediation planning.

πŸ“¦ Distribution Paths

Host Distribution path Notes
Claude Code .claude-plugin/marketplace.json, plugins/claude/endor-labs-agent-kit/, plugins/claude/ai-plugins/ Preferred package plus legacy compatibility.
Codex .agents/plugins/marketplace.json, plugins/codex/endor-labs-agent-kit/ Skills, custom-agent TOML files, and installer script.
Gemini CLI plugins/gemini/endor-labs-agent-kit/ Directory install locally; tagged GitHub repo for public installs.
Antigravity CLI plugins/antigravity/endor-labs-agent-kit/ Package directory with root plugin.json.
Cursor IDE .cursor-plugin/, agents/, skills/, assets/logo.svg Source-generated Cursor plugin agents and support skills.
Cursor SDK cursor-sdk/ Python SDK launcher, generated prompts, and local/cloud run instructions.
Root support .mcp.json, GEMINI.md Optional MCP support context; the repository root is not a Gemini extension root.

πŸ”’ Safety Rules

  • Setup is readiness guidance; it must not run scans or mutate repositories.
  • Setup must not run endorctl host-check.
  • Install, update, auth, namespace, and host-specific package steps must be explicit and evidence-backed.
  • Do not print, persist, or copy secret values. Report credential presence only by variable or key name.
  • Live Endor API evidence requires explicit approval and namespace provenance.
  • Mutating workflows split file edits, branch pushes, PR/MR creation, comments, tickets, approval verification, and Endor policy writes into separate gates.

πŸ” Source Sync

Do not change generated Agent Kit behavior by editing package files in this repo. Make behavior changes in the Agent Kit source repo, regenerate there, then let the Agent Kit publish workflow open a generated PR here.

Generated sync PRs should include:

  • source Agent Kit commit in the PR body
  • provenance/agent-kit-catalog.intoto.json
  • provenance/manifest.sha256
  • validation evidence for root skills, JSON metadata, Cursor SDK, Gemini no-zip, byte-for-byte generated-surface diffs, and git diff --check

Manual fallback uses the Agent Kit sync script:

AGENT_KIT_REPO="/path/to/endor-labs-agent-kit"

python3 "$AGENT_KIT_REPO/scripts/sync_ai_plugins_distribution.py" \
  --source "$AGENT_KIT_REPO" \
  --target .

βœ… Validation

for skill in skills/*; do python3 scripts/quick_validate.py "$skill"; done
python3 -m json.tool .claude-plugin/marketplace.json >/dev/null
python3 -m json.tool .agents/plugins/marketplace.json >/dev/null
python3 -m json.tool .cursor-plugin/marketplace.json >/dev/null
python3 -m json.tool .cursor-plugin/plugin.json >/dev/null
python3 -m json.tool cursor-sdk/agent_definitions.json >/dev/null
python3 - <<'PY'
import py_compile

py_compile.compile("cursor-sdk/run_cursor_agent.py", cfile="/tmp/run_cursor_agent.pyc", doraise=True)
PY
test ! -e gemini-extension.json
test -f plugins/gemini/endor-labs-agent-kit/gemini-extension.json
test ! -e plugins/gemini/endor-labs-agent-kit.zip
git diff --check

These checks also run automatically on every pull request via .github/workflows/validate.yml.

Generated drift checks:

AGENT_KIT_REPO="/path/to/endor-labs-agent-kit"

diff -qr "$AGENT_KIT_REPO/plugins" ./plugins
diff -qr "$AGENT_KIT_REPO/.cursor-plugin" ./.cursor-plugin
diff -qr "$AGENT_KIT_REPO/agents" ./agents
diff -qr "$AGENT_KIT_REPO/cursor-sdk" ./cursor-sdk
for skill in ai-sast-triage endor-agent-kit-setup endor-troubleshooter malware-response probe-droid sca-remediation; do
  diff -qr "$AGENT_KIT_REPO/skills/$skill" "./skills/$skill"
done
diff -q "$AGENT_KIT_REPO/assets/logo.svg" assets/logo.svg

πŸ—‚οΈ Repository Reference

.agents/plugins/marketplace.json
.claude-plugin/marketplace.json
.cursor-plugin/
agents/
assets/logo.svg
cursor-sdk/
docs/
.mcp.json
GEMINI.md
llms.txt
plugins/
scripts/
skills/

License

This repository includes the existing LICENSE file and Endor Labs plugin metadata for the public distribution packages. Confirm final marketplace, license, and host metadata requirements before public submission.

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

5 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 1

Endor Labs Agent Kit 2.0.0 Latest
Jun 10, 2026

Packages

 
 
 

Contributors

Languages