skill-creator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): No security issues or malicious patterns were detected in the analyzed files.
- [DYNAMIC_EXECUTION] (SAFE): Both Python scripts correctly use
yaml.safe_load()to parse YAML data fromSKILL.mdand command-line inputs, protecting against YAML deserialization attacks. - [COMMAND_EXECUTION] (SAFE): The file writing operations in
generate_openai_yaml.pyare restricted to creating anagents/openai.yamlfile within a resolved directory path. It uses a customyaml_quotefunction to sanitize and escape strings before writing to the filesystem. - [DATA_EXPOSURE] (SAFE): The scripts do not access sensitive system paths or include hardcoded credentials. All operations are confined to the provided skill directory.
Audit Metadata