Trust Assessment
entr received a trust score of 72/100, placing it in the Caution category. This skill has some security considerations that users should review before deployment.
SkillShield's automated analysis identified 1 finding: 1 critical, 0 high, 0 medium, and 0 low severity. Key findings include Skill enables arbitrary command execution via `entr` utility.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| CRITICAL | Skill enables arbitrary command execution via `entr` utility The `entr` skill exposes the `entr` utility, which is explicitly designed to execute arbitrary commands (`<utility> [arguments]`) when files change. If the `<utility>` or `[arguments]` are constructed using untrusted user input, an attacker can inject malicious commands, leading to arbitrary code execution on the host system. This represents a direct and severe command injection vulnerability. To mitigate this, any agent utilizing this skill must implement robust input validation and sanitization for all user-provided components of the `entr` command, especially the `<utility>` and `[arguments]` parts. Commands should be executed in a sandboxed environment with minimal privileges. Additionally, consider requiring explicit user confirmation for potentially dangerous commands, displaying the full command before execution. | LLM | SKILL.md:12 |
Scan History
Embed Code
[](https://skillshield.io/report/5272faed449af211)
Powered by SkillShield