Trust Assessment
poe-chat received a trust score of 60/100, placing it in the Caution category. This skill has some security considerations that users should review before deployment.
SkillShield's automated analysis identified 5 findings: 0 critical, 1 high, 4 medium, and 0 low severity. Key findings include Suspicious import: requests, Unpinned Python dependency version, Arbitrary File Upload Leading to Data Exfiltration.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 14, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings5
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| HIGH | Arbitrary File Upload Leading to Data Exfiltration The `poe_client.py` script allows users to specify arbitrary local file paths via the `--file` argument. The script then reads the content of these files and uploads them to the Poe API. An attacker could exploit this by providing paths to sensitive local files (e.g., configuration files, SSH keys, password files) to exfiltrate data from the environment where the skill is executed. Implement strict validation or sandboxing for file paths provided by the user. Consider restricting file uploads to specific directories or file types, or requiring explicit user confirmation for uploads from sensitive locations. Clearly document the security implications of uploading files. | LLM | scripts/poe_client.py:29 | |
| MEDIUM | Suspicious import: requests Import of 'requests' detected. This module provides network or low-level system access. Verify this import is necessary. Network and system modules in skill code may indicate data exfiltration. | Static | skills/longmans/poe-chat/scripts/list_models.py:11 | |
| MEDIUM | Unpinned Python dependency version Requirement 'fastapi-poe' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'. | Dependencies | skills/longmans/poe-chat/scripts/requirements.txt:1 | |
| MEDIUM | Unpinned Python dependency version Requirement 'requests' is not pinned to an exact version. Pin Python dependencies with '==<exact version>'. | Dependencies | skills/longmans/poe-chat/scripts/requirements.txt:2 | |
| MEDIUM | Unpinned Dependencies in requirements.txt The `requirements.txt` file specifies dependencies (`fastapi-poe`, `requests`) without pinning them to specific versions. This can lead to supply chain vulnerabilities if a new, malicious, or vulnerable version of a dependency is released and automatically installed. It also makes builds non-deterministic. Pin all dependencies to exact versions (e.g., `fastapi-poe==X.Y.Z`, `requests==A.B.C`). Use a dependency management tool that generates lock files (e.g., `pip-tools`, `Poetry`, `Rye`) to ensure deterministic and secure builds. | LLM | scripts/requirements.txt:1 |
Scan History
Embed Code
[](https://skillshield.io/report/c3b2a9c4d8cdcdee)
Powered by SkillShield