skill-creator
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- SAFE (SAFE): The documentation and scripts are focused on standard development workflows for skill creation. No malicious behavior or prompt injection patterns were detected.
- COMMAND_EXECUTION (SAFE): The python scripts perform standard file system operations and ZIP compression for packaging purposes. No arbitrary command execution or privilege escalation attempts are present.
- DATA_EXFILTRATION (SAFE): No hardcoded credentials or attempts to access sensitive system files (e.g., SSH keys, cloud credentials) were identified.
- REMOTE_CODE_EXECUTION (SAFE): The scripts do not download or execute remote code. All operations use standard libraries and local script references.
- DYNAMIC_EXECUTION (SAFE): YAML parsing in the validation script uses safe_load(), preventing unsafe deserialization vulnerabilities.
Audit Metadata