creating-skills
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is primarily educational, providing best practices and templates for creating agent skills. It adheres to the security principles it describes.
- [COMMAND_EXECUTION]: Provides local Python scripts (
scripts/init_skill.pyandscripts/validate_skill.py) to automate skill creation and validation. Technical audit of these scripts confirms they exclusively use Python's standard library (os, sys, pathlib, re, argparse) and perform safe file system operations restricted to the skill's workspace. - [EXTERNAL_DOWNLOADS]: Mentions the use of standard ecosystem utilities such as
npx skills initandpip install skills-ref. These are documented as recommended tools for skill development and validation within the intended platform environment. - [COMMAND_EXECUTION]: The
references/hooks-recipes.mdfile contains a library of shell command examples for use in agent hooks (e.g.,prettier,eslint,ruff,git). These are presented as educational configuration examples to assist developers in automating formatting and safety checks.
Audit Metadata