Trust Assessment
python-backend received a trust score of 78/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 2 findings: 0 critical, 1 high, 1 medium, and 0 low severity. Key findings include Missing required field: name, Excessive 'Bash' permission declared.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 15, 2026 (commit 1823c3f6). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings2
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| HIGH | Excessive 'Bash' permission declared The skill declares 'Bash' permission in its manifest. This permission allows the agent to execute arbitrary shell commands, which can lead to command injection vulnerabilities if not handled with extreme care, especially when processing untrusted user input. While a 'developer' agent might require shell access for tasks like running migrations or installing dependencies, this capability significantly increases the attack surface. Re-evaluate the necessity of 'Bash' permission. If absolutely required, implement strict input validation and sanitization for any user-provided data that might be used in shell commands. Consider using more granular permissions or sandboxed execution environments if possible. | Static | Manifest | |
| MEDIUM | Missing required field: name The 'name' field is required for claude_code skills but is missing from frontmatter. Add a 'name' field to the SKILL.md frontmatter. | Static | plugins/specweave-backend/skills/python-backend/SKILL.md:1 |
Scan History
Embed Code
[](https://skillshield.io/report/b324324961ff4a8c)
Powered by SkillShield