find-skills
Warn
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill retrieves capability metadata and search results from skills.sh and downloads configuration from GitHub repositories, including trusted sources like Vercel Labs.\n- [REMOTE_CODE_EXECUTION]: The npx skills add command downloads and installs external code. The documentation recommends the -y flag, which allows the agent to install and run unverified third-party packages from arbitrary repositories without manual oversight or confirmation.\n- [COMMAND_EXECUTION]: The skill manages capabilities by executing shell commands via npx. This includes searching for, adding, and updating skills, which may involve processing unsanitized user input within command arguments.\n- [REMOTE_CODE_EXECUTION]: The skill acts as a discovery service for external code; without strict validation or boundary markers for search outputs, it is vulnerable to indirect injection where a malicious package could be installed if it appears in the search results.
Audit Metadata