find-skills
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes shell commands (
npx skills) to interact with a package management ecosystem for finding, adding, and updating agent capabilities. - [EXTERNAL_DOWNLOADS]: The skill enables downloading and installing code from external repositories (GitHub) via the
npx skills addcommand. It includes proactive mitigation guidelines in 'Step 4: Verify Quality Before Recommending', instructing the agent to validate the reputation of sources (referencing trusted entities like Vercel Labs, Microsoft, and Anthropics) and popularity metrics (install counts and stars) before proceeding with recommendations or installations.
Audit Metadata