clean-code
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- COMMAND_EXECUTION (MEDIUM): The skill instructs the agent to execute various Python scripts from the command line (e.g., 'python ~/.claude/skills/vulnerability-scanner/scripts/security_scan.py .') as a mandatory part of its workflow. This represents execution of code from the local filesystem based on predefined paths.
- EXTERNAL_DOWNLOADS (MEDIUM): The skill depends on multiple external scripts located in a hidden directory (~/.claude/skills/). Since these files are not provided with the skill itself, their content and safety cannot be verified, making them untrusted dependencies.
Audit Metadata