audit-skills
Conducts thorough security audits of AI skills and bundles, identifying vulnerabilities and risks across multiple platforms.
Install this skill
or
45/100
Security score
The audit-skills skill was audited on May 15, 2026 and we found 5 security issues across 4 threat categories, including 1 critical. Review the findings below before installing.
Categories Tested
Security Issues
critical line 82
Piping content to bash shell
SourceSKILL.md
| 82 | - **Tubes**: `curl ... | bash`, `iwr ... | iex`. |
medium line 71
Access to .env file
SourceSKILL.md
| 71 | - **Sensible Data**: `.env`, `.ssh`, `cookies.sqlite`, `Keychains` (macOS), `Credentials` (Windows), `keystore` (Android). |
high line 71
Access to system keychain/keyring
SourceSKILL.md
| 71 | - **Sensible Data**: `.env`, `.ssh`, `cookies.sqlite`, `Keychains` (macOS), `Credentials` (Windows), `keystore` (Android). |
medium line 80
Base64 decode via atob()
SourceSKILL.md
| 80 | - **Encoding**: `Base64`, `Hex`, `XOR` loops, `atob()`. |
medium line 126
Base64 decode via atob()
SourceSKILL.md
| 126 | **Solution:** Look for encoding patterns like Base64, Hex, XOR loops, and atob() |
Scanned on May 15, 2026
View Security Dashboard