Security Audit
cloudflare/agents:examples/assistant/agents/assistant/agents/my-assistant/skills/workspace-digest
github.com/cloudflare/agentsTrust Assessment
cloudflare/agents:examples/assistant/agents/assistant/agents/my-assistant/skills/workspace-digest received a trust score of 85/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 1 finding: 0 critical, 1 high, 0 medium, and 0 low severity. Key findings include Path Traversal via Directory Input.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on July 17, 2026 (commit 23abbada). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| HIGH | Path Traversal via Directory Input The `dir` parameter from the untrusted input is used directly to construct a glob pattern (`${dir.replace(/\/$/, "")}/**/*`) without validation or sanitization. An attacker could supply path traversal sequences (e.g., '../../') to escape the intended workspace directory and list files in unauthorized directories. Sanitize the `dir` input to ensure it does not contain path traversal sequences like `..` and resolve it relative to the workspace root before constructing the glob pattern. | LLM | scripts/digest.ts:17 |
Scan History
Embed Code
[](https://skillshield.io/report/00015c90819a09c0)
Powered by SkillShield