skill-writer
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the
Bashtool to perform directory management (mkdir) and execute a local validation script (validate.sh). These operations are necessary for its primary purpose of creating and verifying new skill files within the standard~/.claude/skills/path. Variables are properly quoted in the provided shell script to mitigate command injection risks. - [DATA_EXPOSURE]: The skill interacts with the local filesystem to read and write markdown files. It does not access sensitive system directories (like
.sshor.aws) and does not contain any network-enabled tools or logic to exfiltrate data. - [PROMPT_INJECTION]: The skill documentation (
AGENTS.md) contains safety-oriented guidelines that instruct the agent to avoid vague guidance and to implement pre-flight environment checks, which reduces the risk of creating malfunctioning or exploitable skills in the future. - [SAFE]: The skill structure uses a clear L1/L2/L3 information architecture, ensuring that heavy reference files are only loaded on demand, which optimizes the context window and minimizes the chance of instruction confusion.
Audit Metadata