Trust Assessment
ai-product-photography received a trust score of 94/100, placing it in the Trusted category. This skill has passed all critical security checks and demonstrates strong security practices.
SkillShield's automated analysis identified 1 finding: 0 critical, 0 high, 1 medium, and 0 low severity. Key findings include Broad Bash(infsh *) permission allows arbitrary infsh commands.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 14, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| MEDIUM | Broad Bash(infsh *) permission allows arbitrary infsh commands The skill declares `Bash(infsh *)` as an allowed tool. This permission grants the skill the ability to execute any command starting with `infsh`, not just specific subcommands like `infsh app run`. While the provided `SKILL.md` examples only demonstrate benign usage (e.g., `infsh app run`, `infsh login`, `infsh app list`), this broad permission could be exploited if the skill were manipulated to call other `infsh` subcommands that could perform destructive actions, exfiltrate configuration, or modify user settings (e.g., `infsh config`, `infsh delete`). This increases the attack surface beyond the skill's intended functionality. Restrict the `Bash` permission to only the specific `infsh` subcommands and arguments required for the skill's intended functionality. For example, if only `infsh app run` is needed, specify `Bash(infsh app run)`. | LLM | Manifest |
Scan History
Embed Code
[](https://skillshield.io/report/cfa52594ecb958e8)
Powered by SkillShield