skill-creator
Fail
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: CRITICAL
Full Analysis
- Automated Development Utilities: The skill features Python scripts (init_skill.py and package_skill.py) that facilitate the creation and distribution of skill packages. These tools automate the setup of directory structures and the generation of template files, functioning as a standard local development environment.
- Structural Validation: A dedicated validation script (quick_validate.py) is used to check the formatting of skill metadata and directory organization. This includes regular expression checks for naming conventions and length constraints on descriptive fields, promoting consistency and preventing structural errors.
- Controlled File Operations: The utility scripts perform standard file management tasks, such as creating subdirectories and writing template content. The packaging process uses standard compression libraries to bundle the skill for distribution, ensuring that all operations remain within the user-specified local project paths.
- Natural Language Ingestion: The skill is designed to translate user requirements into functional skill components. To manage this process securely, it utilizes predefined templates and structural validation to ensure that user-provided metadata adheres to safe formatting standards and length limits before being written to the filesystem.
Recommendations
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata