skill-creator
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill documentation and provided scripts contain no malicious instructions, prompt injection attempts, or data exfiltration patterns.
- [COMMAND_EXECUTION]: The skill includes Python utilities (
init_skill.pyandpackage_skill.py) that perform local file system operations such as directory creation, file writing, and archiving. These operations are used for their intended purpose of skill scaffolding and distribution. - [SAFE]: The
package_skill.pyscript includes specific security logic to ensure that packaged files remain within the skill's root directory and explicitly rejects symbolic links, preventing potential arbitrary file read vulnerabilities during the packaging process. - [SAFE]: The
quick_validate.pyscript provides sanitization by checking for disallowed characters and length constraints in skill descriptions.
Audit Metadata