skill-creator
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [SAFE] (SAFE): No malicious patterns, suspicious logic, or vulnerabilities were detected in the provided scripts or documentation.\n- [Remote Code Execution] (SAFE): No remote code download or execution patterns were found. The scripts perform local file operations related to packaging and validation.\n- [Data Exposure & Exfiltration] (SAFE): No sensitive file access or hardcoded credentials were identified. No network-outbound operations are present.\n- [Obfuscation] (SAFE): No encoded content or hidden logic was found.\n- [Indirect Prompt Injection] (SAFE): While the validation script processes
SKILL.md(untrusted data), it usesyaml.safe_load()which is a secure deserialization method. The capability of the tool is limited to displaying a validation message.
Audit Metadata