Skip to main content

Security Audit

mrdulasolutions/exchekskills:exchek-export-docs

github.com/mrdulasolutions/exchekskills
AI SkillCommit c49adb39ac4c
42
CRITICAL
Scanned 12 days ago
1
Critical
Immediate action required
1
High
Priority fixes suggested
1
Medium
Best practices review
2
Low
Acknowledged / Tracked

Trust Assessment

mrdulasolutions/exchekskills:exchek-export-docs received a trust score of 42/100, placing it in the Untrusted category. This skill has significant security findings that require attention before use in production.

SkillShield's automated analysis identified 5 findings: 1 critical, 1 high, 1 medium, and 2 low severity. Key findings include Unpinned npm dependency version, Node lockfile missing, Potential Command Injection via User-Controlled Path.

The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. The Static Code Analysis layer scored lowest at 53/100, indicating areas for improvement.

Last analyzed on March 18, 2026 (commit c49adb39). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.

Layer Breakdown

Manifest Analysis
100%
Static Code Analysis
53%
Dependency Graph
91%
LLM Behavioral Safety
100%

Behavioral Risk Signals

Filesystem Write
4 findings
Shell Execution
1 finding
Dynamic Code
1 finding
Excessive Permissions
1 finding

Security Findings5

SeverityFindingLayerLocation

Scan History

Embed Code

[![SkillShield](https://skillshield.io/api/v1/badge/9060f37ba4bed8a3.svg)](https://skillshield.io/report/9060f37ba4bed8a3)
SkillShield Badge

Powered by SkillShield