skill-creator
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): No security issues detected.
- [COMMAND_EXECUTION] (SAFE): The provided Python scripts (
package_skill.pyandquick_validate.py) are focused on local file system operations, such as creating zip archives and validating file contents. They do not execute arbitrary system commands or shell scripts. - [DATA_EXFILTRATION] (SAFE): There are no network-capable operations (e.g., requests, sockets) or patterns suggesting the collection of sensitive data for external transmission.
- [REMOTE_CODE_EXECUTION] (SAFE): The skill does not download or execute remote code. It uses
yaml.safe_load()inquick_validate.py, which is the secure way to parse YAML and prevents arbitrary code execution during the parsing process.
Audit Metadata