Skills
skills/langfuse/skills/skill-creator/Gen Agent Trust Hub

skill-creator

Pass

Audited by Gen Agent Trust Hub on Feb 18, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE] (SAFE): Analysis of all 4 files shows no evidence of malicious patterns.
  • scripts/package_skill.py: Uses zipfile to package a directory. It correctly resolves paths and uses a validation script before proceeding.
  • scripts/quick_validate.py: Performs schema and format validation on SKILL.md files. It uses yaml.safe_load() to prevent unsafe deserialization and regex for string validation.
  • references/output-patterns.md and references/workflows.md: Provide markdown templates and instructional guidance for skill development with no executable code or injection vectors.
  • Dynamic Execution (SAFE): No dynamic execution (eval/exec) or runtime compilation was found.
  • Data Exfiltration (SAFE): No network operations or access to sensitive local credentials were found.
  • External Downloads (SAFE): No remote scripts or external dependencies are downloaded at runtime.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 18, 2026, 05:51 PM