safedep CLI, and hands back the result. You skip the SQL and the schema lookup.
Prerequisites
- A SafeDep Cloud tenant with data synced from your tools. The agent can only answer what your tenant holds, so connect at least one source first.
- The
safedepCLI installed and signed in. Runsafedep auth login, thensafedep auth statusto confirm the tenant. See the authentication guide. - An AI coding agent that supports skills, such as Claude Code.
Install the skill
- Claude Code
- Any agent
Ask a question
Type your question the way you would ask a teammate:safedep query exec, and replies with the count. Every answer traces back to a real query, so you can ask the agent to show the SQL it ran.
Questions that map cleanly to your synced data:
| Ask | Reads from |
|---|---|
| How many projects are we monitoring? | Projects |
| Which projects have critical vulnerabilities? | Projects, packages, vulnerabilities |
| Any malicious packages blocked across dev endpoints last week? | Package Guard events |
| Which developer machines are running PMG? | Endpoints |
| Which endpoints have not synced in 30 days? | Endpoints |
Write your own queries
The skill runs the same query interface you can drive by hand. To see the full table list, join edges, and query rules, read SafeDep Cloud SQL. When an agent answer looks off, run the query yourself withsafedep query exec and compare.
Queries are scoped to your authenticated tenant. The agent never sees data outside it, and you never write a tenant filter yourself.

