Trust Assessment
social-gen received a trust score of 86/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 1 finding: 0 critical, 1 high, 0 medium, and 0 low severity. Key findings include Unpinned `npx` execution introduces supply chain risk.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 14, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings1
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| HIGH | Unpinned `npx` execution introduces supply chain risk The skill instructs users to execute `npx ai-social` without specifying a version. This means the latest version of the `ai-social` package from npm will always be downloaded and executed. A malicious actor could publish a compromised version of `ai-social` or a typosquatted package, leading to arbitrary code execution on the user's machine. The external tool is described as reading local files (e.g., `README.md`) and accessing the `OPENAI_API_KEY` environment variable, which could be exploited for data exfiltration or other malicious activities if the package is compromised. Specify a pinned version for `npx` commands (e.g., `npx ai-social@1.2.3`) to ensure consistent and auditable code execution. Advise users to audit the package source before execution. Consider providing the source code directly or a more controlled execution environment. | LLM | SKILL.md:13 |
Scan History
Embed Code
[](https://skillshield.io/report/c0bd79a8c4465f43)
Powered by SkillShield