Trust Assessment
freshdesk received a trust score of 86/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 1 finding: 0 critical, 1 high, 0 medium, and 0 low severity. Key findings include Unsanitized environment variable interpolation in shell commands.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| HIGH | Unsanitized environment variable interpolation in shell commands The `SKILL.md` demonstrates `curl` commands that directly interpolate environment variables (`$FRESHDESK_DOMAIN`, `$FRESHDESK_API_KEY`) into shell commands without proper sanitization or quoting. If these environment variables contain shell metacharacters (e.g., `;`, `&`, `|`, `$(...)`), an attacker who can control these environment variables could achieve arbitrary command execution on the host system when the agent executes these commands. Ensure that all environment variables interpolated into shell commands are properly sanitized or quoted to prevent shell metacharacter interpretation. For example, using `printf %q` in bash or ensuring the agent framework performs robust escaping before execution. | LLM | SKILL.md:16 |
Scan History
Embed Code
[](https://skillshield.io/report/5406181130bad72d)
Powered by SkillShield