Trust Assessment
find-people received a trust score of 58/100, placing it in the Caution category. This skill has some security considerations that users should review before deployment.
SkillShield's automated analysis identified 3 findings: 1 critical, 1 high, 1 medium, and 0 low severity. Key findings include Sensitive environment variable access: $HOME, Unpinned Third-Party Dependency, Sensitive Credential Exposed to Unpinned Third-Party Dependency.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. The LLM Behavioral Safety layer scored lowest at 55/100, indicating areas for improvement.
Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings3
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| CRITICAL | Sensitive Credential Exposed to Unpinned Third-Party Dependency The script exports the `X402_PRIVATE_KEY` (a crypto wallet private key) as an environment variable, making it accessible to the `npx`-executed third-party package `@itzannetos/x402-tools-claude`. Given that this dependency is unpinned (as identified in SS-SCRM-001), a compromised or malicious version of the package could easily exfiltrate this highly sensitive private key from the environment, leading to unauthorized access to funds or other critical assets. This constitutes a severe data exfiltration and credential harvesting risk. 1. **Prioritize pinning the dependency** to a specific, audited version to mitigate the immediate supply chain risk (as per SS-SCRM-001). 2. **Consider alternative, more secure methods for passing sensitive credentials** that limit their exposure, such as using a secure secrets management service, passing the key via standard input, or a temporary file with restricted permissions, if the `x402-tools-claude` package supports it. If direct environment variable exposure is unavoidable, ensure the third-party dependency is thoroughly vetted, audited, and its integrity continuously monitored. | LLM | scripts/research.sh:35 | |
| HIGH | Unpinned Third-Party Dependency The skill executes an unpinned third-party npm package (`@itzannetos/x402-tools-claude`) using `npx`. This means that `npx` will always fetch and execute the latest version of the package. A malicious update to this package could lead to credential exfiltration, command injection, or other arbitrary code execution without requiring any changes to the skill's own code. Pin the dependency to a specific, known-good version. For `npx`, this can be done by specifying the version (e.g., `npx -y @itzannetos/x402-tools-claude@1.2.3 find-people "$QUERY"`). Regularly review and update the pinned version after verifying its integrity and security. | LLM | scripts/research.sh:47 | |
| MEDIUM | Sensitive environment variable access: $HOME Access to sensitive environment variable '$HOME' detected in shell context. Verify this environment variable access is necessary and the value is not exfiltrated. | Static | skills/tzannetosgiannis/find-people/scripts/research.sh:19 |
Scan History
Embed Code
[](https://skillshield.io/report/ad3353da5fbe0c44)
Powered by SkillShield