Skills
skills/aiskillstore/marketplace/skill-vetter/Snyk

skill-vetter

Fail

Audited by Snyk on Jun 14, 2026

Risk Level: CRITICAL
Full Analysis

CRITICAL E005: Suspicious download URL detected in skill instructions.

  • Suspicious download URL detected (high risk: 0.80). Mixed: the http://external-server entry is high-risk (an untrusted, non-HTTPS external host/placeholder commonly used in examples of data-exfiltration and dangerous curl/wget commands), while the GitHub URL points to a public repository containing documentation-only "skill-vetter" (low risk) — but the presence of the external-server makes the set suspicious as a potential malware distribution instruction.

Issues (1)

E005
CRITICAL

Suspicious download URL detected in skill instructions.

Audit Metadata
Risk Level
CRITICAL
Analyzed
Jun 14, 2026, 01:25 AM
Issues
1
Security Audit — snyk — skill-vetter