SkillClone: Multi-Modal Clone Detection and Clone Propagation Analysis in the Agent Skill Ecosystem

A research team from Nanyang Technological University and Tsinghua University has published SkillClone, the first tool designed to detect duplicate "agent skills"—the modular instruction packages that power AI assistants. With 196,000 skills now publicly available, the ecosystem has grown without any mechanism to track copying, creating systemic security vulnerabilities where bugs in popular skills silently propagate. SkillClone solves this by using a multi-modal approach that fuses flat TF-IDF similarity with per-channel analysis of YAML metadata, natural language instructions, and embedded code through logistic regression, achieving an F1 score of 0.939 on their custom SkillClone-Bench benchmark.

Applying SkillClone to a dataset of 20,000 skills revealed staggering levels of duplication: 258,000 clone pairs involving 75% of all skills, with 40% of those pairs crossing author boundaries. The analysis shows the agent skill ecosystem is inflated by approximately 3.5 times, with only 5,642 unique skill concepts underlying the entire sampled collection. Furthermore, 41% of skills in clone families were found to be superseded by a strictly better variant, indicating significant redundancy and maintenance overhead. This research provides both a crucial tool for ecosystem health and a stark warning about the risks of unmanaged code reuse in the rapidly expanding world of AI agents.