skill-creator
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides structured instructions and scripts for the standard lifecycle of agent skill development.
- [SAFE]: The packaging script (
scripts/package_skill.py) includes explicit security checks to skip symlinks and prevent file path traversal (_is_withincheck), ensuring that files outside the skill directory cannot be accidentally packaged or exfiltrated. - [SAFE]: The validation script (
scripts/quick_validate.py) usesyaml.safe_loadfor parsing configuration files, which is a best practice to prevent arbitrary code execution during YAML deserialization. - [SAFE]: The inclusion of regression tests (
scripts/test_package_skill.pyandscripts/test_quick_validate.py) demonstrates a high level of engineering maturity and focus on maintaining the security properties of the toolset. - [SAFE]: No network operations, hardcoded credentials, or obfuscated code were detected across the provided instruction files and Python scripts.
Audit Metadata