skill-doctor
Pass
Audited by Gen Agent Trust Hub on Mar 21, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a diagnostic tool,
doctor.py, which validates the structure and metadata of other installed skills by reading local directory contents. - [SAFE]: It utilizes
yaml.safe_load()for all YAML parsing tasks, including skill frontmatter and its own state management, effectively mitigating risks associated with unsafe deserialization. - [SAFE]: The skill does not involve any network communication, external data exfiltration, or remote downloads.
- [SAFE]: No use of dangerous functions such as
eval(),exec(), or subprocess spawning was detected; the script is limited to standard file I/O within the user's designated application directory. - [SAFE]: Command-line arguments are processed securely using the standard
argparsemodule for local administrative tasks.
Audit Metadata