oma-skill-creator

Pass

Audited by Gen Agent Trust Hub on Jun 13, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill's primary function is to manage and structure local documentation and configuration files for an agentic framework.
  • [COMMAND_EXECUTION]: Employs standard Unix utilities including rg, find, awk, sed, and git for text searching, pattern matching, and file validation. These tools are invoked locally for intended developer workflows.
  • [PROMPT_INJECTION]: The skill processes user-supplied goals and intents to generate new skill content. This represents an indirect prompt injection surface where external input influences the output structure. However, given this is the primary purpose of the skill, and it follows a structured template with clear boundaries, the risk is inherent to the task and does not indicate malicious intent.
  • Ingestion points: User-provided skill_goal, trigger_intents, and existing skill files.
  • Boundary markers: The skill enforces a rigid structure based on the SSL-lite template in resources/ssl-lite-template.md.
  • Capability inventory: File system write access (WRITE) to .agents/skills/ and execution of local search/patch tools.
  • Sanitization: Relies on structured template enforcement and manual validation checks via the validation-checklist.md.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 13, 2026, 12:18 PM
Security Audit — agent-trust-hub — oma-skill-creator