Trust Assessment
discord-doctor received a trust score of 90/100, placing it in the Trusted category. This skill has passed all critical security checks and demonstrates strong security practices.
SkillShield's automated analysis identified 1 finding: 0 critical, 1 high, 0 medium, and 0 low severity. Key findings include Potential Command Injection via Dynamic Package Installation.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| HIGH | Potential Command Injection via Dynamic Package Installation The skill description states that the `discord-doctor` tool can 'Install missing npm packages'. If the names of these packages are dynamically determined from untrusted input (e.g., user-provided strings, external configuration files, or data from potentially malicious sources), an attacker could inject arbitrary shell commands. By crafting a malicious package name (e.g., `malicious-package; rm -rf /`), an attacker could execute arbitrary code on the system where the skill is run. Ensure that all package names passed to `npm install` are strictly validated against a whitelist of approved packages or are hardcoded within the skill's source. Avoid constructing package names from any untrusted user input or unverified external sources. If dynamic installation is absolutely necessary, use a safe API that does not involve direct shell execution, or implement robust input sanitization and escaping for shell commands. | LLM | SKILL.md:29 |
Scan History
Embed Code
[](https://skillshield.io/report/3191f76481940427)
Powered by SkillShield