Skills
skills/sickn33/antigravity-awesome-skills/semgrep-rule-creator/Gen Agent Trust Hub

semgrep-rule-creator

Pass

Audited by Gen Agent Trust Hub on Mar 13, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes the Bash tool to execute semgrep --test for the purpose of validating rules against test files. This is a primary and expected function of a rule-authoring skill.
  • [EXTERNAL_DOWNLOADS]: The skill uses WebFetch to retrieve documentation from well-known and trusted sources, including the official Semgrep documentation at semgrep.dev and the semgrep organization's GitHub repository. These sources are recognized as safe and reputable for technical documentation.
  • [PROMPT_INJECTION]: The skill processes user-defined code patterns and vulnerability descriptions to generate detection logic. This ingestion point represents an inherent surface for indirect prompt injection, typical for coding assistants, where malicious input could attempt to influence the generated output. However, the skill includes strict workflow steps and testing requirements to mitigate accidental misbehavior.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 13, 2026, 01:35 AM