Skills
skills/gwenwindflower/.charmschool/develop-agent-skills/Gen Agent Trust Hub

develop-agent-skills

Warn

Audited by Gen Agent Trust Hub on Apr 7, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [COMMAND_EXECUTION]: The skillutil tool executes the system tar utility to extract skill archives downloaded from remote sources.
  • [COMMAND_EXECUTION]: The tool uses Deno.chmod to grant executable permissions (0o755) to generated and downloaded scripts.
  • [EXTERNAL_DOWNLOADS]: The skill fetches documentation from Anthropic's official domain (code.claude.com) and allows users to download skill packages from any repository on github.com.
  • [REMOTE_CODE_EXECUTION]: The tool facilitates a download-and-extract workflow for remote code from GitHub. While user-initiated, this functionality creates a pathway for the ingestion of malicious scripts into the agent's environment.
  • [DATA_EXFILTRATION]: The skillutil.ts script reads the HOME environment variable to determine paths for file operations within the user's local filesystem.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 7, 2026, 12:39 PM