skill-creator
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to run local Python scripts, such as scripts/init_skill.py and scripts/package_skill.py, to handle file system operations and skill validation.
- [EXTERNAL_DOWNLOADS]: The documentation references external GitHub repositories from established organizations for skill templates and examples.
- [PROMPT_INJECTION]: As a tool for generating new skill files, it processes user-provided content. It mitigates injection risks by enforcing validation rules that prohibit reserved words and characters that could interfere with system prompts.
Audit Metadata