Skip to main content

Security Audit

dceoy/speckit-agent-skills:skills/speckit-implement

github.com/dceoy/speckit-agent-skills
AI SkillCommit a934d48ecf66
65
CAUTION
Scanned 6 days ago
1
Critical
Immediate action required
2
High
Priority fixes suggested
1
Medium
Best practices review
0
Low
Acknowledged / Tracked

Trust Assessment

dceoy/speckit-agent-skills:skills/speckit-implement received a trust score of 65/100, placing it in the Caution category. This skill has some security considerations that users should review before deployment.

SkillShield's automated analysis identified 4 findings: 1 critical, 2 high, 1 medium, and 0 low severity. Key findings include Direct Shell Script Execution from Untrusted Repository, Direct Execution of System Commands and Implicit Code Execution, Broad File System Write and Modification Permissions.

The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. The LLM Behavioral Safety layer scored lowest at 33/100, indicating areas for improvement.

Last analyzed on April 1, 2026 (commit a934d48e). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.

Layer Breakdown

Manifest Analysis
100%
Static Code Analysis
100%
Dependency Graph
100%
LLM Behavioral Safety
33%

Behavioral Risk Signals

Filesystem Write
3 findings
Shell Execution
3 findings
Dynamic Code
2 findings
Excessive Permissions
1 finding

Security Findings4

SeverityFindingLayerLocation

Scan History

Embed Code

[![SkillShield](https://skillshield.io/api/v1/badge/5a90ad2169d68f99.svg)](https://skillshield.io/report/5a90ad2169d68f99)
SkillShield Badge

Powered by SkillShield