skill-creator
Pass
Audited by Gen Agent Trust Hub on Mar 25, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill implements best practices for agent skill creation and documentation.
- [COMMAND_EXECUTION]: The skill utilizes the 'synapsync sync' command to synchronize the project manifest and manage symlinks across different providers. This is an intended administrative function of the SynapSync ecosystem.
- [EXTERNAL_DOWNLOADS]: References the official SynapSync skills registry on GitHub and JSON schemas at synapsync.dev. These are legitimate vendor resources used for providing templates and validation.
- [PROMPT_INJECTION]: Analyzed for Indirect Prompt Injection (Category 8). The skill provides a structural framework for generating new skills from user input. Ingestion occurs when users request new skill scaffolds; boundary markers are established by the provided Basic and Advanced markdown templates; capabilities include filesystem write access; and sanitization is enforced by the predefined template sections which guide the AI to produce well-formed, non-executable markdown content.
Audit Metadata