Trust Assessment
comment-analyzer received a trust score of 86/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 1 finding: 0 critical, 1 high, 0 medium, and 0 low severity. Key findings include Broad 'Bash' permission declared.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| HIGH | Broad 'Bash' permission declared The skill declares the 'Bash' tool, which grants the agent the ability to execute arbitrary shell commands. While the skill's examples demonstrate its use for legitimate tasks like `git log`, this permission is overly broad for a comment analysis task. An agent with 'Bash' access could be exploited via prompt injection to execute malicious commands, leading to data exfiltration, system compromise, or other unintended actions. More granular permissions or a restricted execution environment would be safer. Restrict 'Bash' access to specific, whitelisted commands or replace it with more granular tools (e.g., a dedicated 'Git' tool for version control operations) if available. Alternatively, ensure the 'Bash' execution environment is highly sandboxed and isolated. | LLM | SKILL.md |
Scan History
Embed Code
[](https://skillshield.io/report/850ae169fbb93380)
Powered by SkillShield