skill-creator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: LOW
Full Analysis
- SAFE (SAFE): No security threats identified across the 10 categories. The skill's primary purpose is providing developer utilities for skill management.
- COMMAND_EXECUTION (SAFE): Scripts perform local file system operations (reading, zipping) based on user-provided paths. There is no evidence of unauthorized command execution.
- REMOTE_CODE_EXECUTION (SAFE): The skill uses yaml.safe_load() for parsing SKILL.md frontmatter, which is protected against arbitrary code execution via YAML tags.
- DATA_EXFILTRATION (SAFE): There are no network-capable commands (e.g., curl, wget) or exfiltration patterns in the provided scripts.
Audit Metadata