skill-creator
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): No subprocess calls, shell executions, or dynamic code evaluation (eval/exec) are present in either script.
- [DATA_EXPOSURE] (SAFE): File operations are localized to the paths provided via command-line arguments. No hardcoded credentials, sensitive file access (e.g., SSH keys, env files), or network operations were found.
- [EXTERNAL_DOWNLOADS] (SAFE): The scripts do not perform any network requests or download external packages. They rely entirely on the Python standard library and a local helper module.
- [PROMPT_INJECTION] (SAFE): No instructions targeting an LLM's behavior or safety filters were found. The validation logic in
quick_validate.pyincludes basic sanitization (checking for angle brackets).
Audit Metadata