skill-creator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill provides utility tools for developers to validate and package other skills. No malicious patterns were identified.
- [DATA_EXFILTRATION] (SAFE): No network operations (curl, wget, etc.) or sensitive file path access were detected in the scripts.
- [REMOTE_CODE_EXECUTION] (SAFE): The scripts perform local file system operations (zipping and reading text) and do not download or execute remote code.
- [DYNAMIC_EXECUTION] (SAFE): The validation script uses
yaml.safe_load()which is a security best practice to prevent code execution during YAML parsing. - [PROMPT_INJECTION] (SAFE): The documentation files provide templates and examples for structuring LLM output and workflows, but these do not contain instructions to bypass safety or override system behavior.
Audit Metadata