Security Audit
Replicate Automation
github.com/ComposioHQ/awesome-claude-skillsTrust Assessment
Replicate Automation received a trust score of 85/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 1 finding: 0 critical, 1 high, 0 medium, and 0 low severity. Key findings include Unrestricted Webhook URL for Data Exfiltration.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 17, 2026 (commit 99e2a295). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| HIGH | Unrestricted Webhook URL for Data Exfiltration The `REPLICATE_MODELS_PREDICTIONS_CREATE` tool allows specifying an arbitrary `webhook` URL. If an attacker can control the input to this tool (e.g., via prompt injection or malicious agent instructions), they could set the webhook to an external, attacker-controlled server. This would cause the results of the Replicate prediction (which might include sensitive data processed by the model) to be sent to the attacker's server, leading to data exfiltration. Implement strict validation or whitelisting for webhook URLs. If possible, restrict webhooks to trusted domains or internal services. If arbitrary webhooks are necessary, ensure that the data sent via the webhook is sanitized or does not contain sensitive information, or add a warning to the user about the potential for data exfiltration. | Static | SKILL.md:40 |
Scan History
Embed Code
[](https://skillshield.io/report/4cf41a549efae5dd)
Powered by SkillShield