Trust Assessment
wiim received a trust score of 89/100, placing it in the Mostly Trusted category. This skill has passed most security checks with only minor considerations noted.
SkillShield's automated analysis identified 2 findings: 0 critical, 0 high, 2 medium, and 0 low severity. Key findings include Potential Command Injection via 'play-url' argument, Unpinned `wiim-cli` dependency in installation instructions.
The analysis covered 4 layers: Manifest Analysis, Static Code Analysis, Dependency Graph, LLM Behavioral Safety. All layers scored 70 or above, reflecting consistent security practices.
Last analyzed on February 13, 2026 (commit 13146e6a). SkillShield performs automated 4-layer security analysis on AI skills and MCP servers.
Layer Breakdown
Behavioral Risk Signals
Security Findings2
| Severity | Finding | Layer | Location | |
|---|---|---|---|---|
| MEDIUM | Potential Command Injection via 'play-url' argument The `wiim play-url` command allows users to provide an arbitrary URL. If the underlying `wiim-cli` tool executes this URL using a shell command (e.g., `curl`, `wget`, `ffmpeg`) without proper sanitization or by using `shell=True` in `subprocess` calls, a malicious URL could lead to arbitrary command execution on the host system. This is a common vulnerability when external commands are invoked with user-supplied input. The skill exposes this user-controlled input to an external tool, creating a potential vector for injection. The `wiim-cli` tool should ensure that any user-provided URLs passed to external commands are properly sanitized or that external commands are invoked in a way that prevents shell interpretation (e.g., passing arguments as a list to `subprocess.run` with `shell=False`). The skill developer should verify the security of the `wiim-cli` tool's implementation for handling URLs. | LLM | SKILL.md:52 | |
| MEDIUM | Unpinned `wiim-cli` dependency in installation instructions The installation instruction `uv tool install wiim-cli` does not specify a version for the `wiim-cli` package. This means that the latest available version will always be installed. If a future version of `wiim-cli` introduces malicious code or critical vulnerabilities, the skill would automatically pull and execute it, posing a supply chain risk. Pinning dependencies ensures deterministic and secure installations. Pin the `wiim-cli` dependency to a specific, known-good version (e.g., `uv tool install wiim-cli==X.Y.Z`) to ensure deterministic and secure installations. Regularly review and update the pinned version to benefit from security patches. | LLM | SKILL.md:9 |
Scan History
Embed Code
[](https://skillshield.io/report/77e0c78465122617)
Powered by SkillShield