skill_creator

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 1.00). The make_skill.py tool allows unauthenticated arbitrary file creation and updates (including Python scripts) without path sanitization or containment, enabling attackers to write/overwrite skills or system files and thus deploy backdoors, RCE payloads, or supply-chain malware.