skill-creator
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a legitimate authoring tool for agent developers, providing templates and automation for skill directory structures.
- [EXTERNAL_DOWNLOADS]: The dependency management template contains a reference to the official 'uv' installation script from astral.sh. This is a well-known service and the reference is provided as informative text for the user rather than an automated execution.
- [COMMAND_EXECUTION]: Local scripts (
init_skill.py,package_skill.py) use the subprocess module to interact with the filesystem and the 'uv' package manager. These operations are restricted to the skill's workspace and include name validation to prevent path traversal.
Audit Metadata