The Agent Skills Directory

[SAFE]: The skill contains documentation and reference materials (README.md, SKILL.md, references/threat-patterns.md) that include examples of malicious commands such as 'curl | bash' and reverse shell payloads. These strings are clearly labeled as samples and threat definitions for the tool's scanning engine and are not instructions for the agent to execute.\n- [SAFE]: The core logic in scripts/scan_skill.py is a passive static analyzer that uses regular expressions to inspect file content. It does not perform network operations, exfiltrate data, or execute the code it scans.\n- [SAFE]: The reverse shell pattern identified by automated scanners in references/threat-patterns.md is located within a descriptive markdown table intended for educational and reference purposes.

clawhub-skill-scanner